wid-sec-w-2026-0963
·
Published 2026-04-06
·
View on BSI CERT-Bund ↗
Microsoft Azure: Multiple Vulnerabilities
CVSS 10.0
CRITICAL
Risk Summary
Improper authorization in Microsoft Azure Kubernetes Service allows an unauthorized attacker to elevate privileges over a network.
Affected Vendors
Microsoft
Affected Products (6)
Microsoft
·
Azure
Kubernetes Service
Microsoft
·
Azure
Databricks
Microsoft
·
Azure
Web Apps
Microsoft
·
Azure
AI Foundry
Microsoft
·
Azure
SRE Agent Gateway-SignalR Hub
Microsoft
·
Azure
Custom Locations Resource Provider
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more