CVE Field Guide
About Us
CVE-2026-26124
PUBLISHED
Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability
Assigner:
microsoft
Reserved:
11.02.2026
Published:
05.03.2026
Updated:
14.04.2026
'.../...//' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally.
Metrics
CVSS 3.1
CVSS Vector:
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
CVSS Score:
6.7
CVSS score
6.7
Attack Vector
Local
Scope
Unchanged
Attack Complexity
Low
Confidentiality Impact
High
Privileges Required
High
Integrity Impact
High
User Interaction
None
Availability Impact
High
CVSS 3.1
Product Status
Vendor
Microsoft
Product
Microsoft ACI Confidential Containers
Versions
Version - is affected
References
Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability
Problem Types