Azure Compute Gallery Local Privilege Escalation Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

6.7

Azure Compute Gallery Local Privilege Escalation Vulnerability

CVE-2026-26124

Summary

A vulnerability in Azure Compute Gallery allows authorized users to gain higher-level access to the affected system, potentially giving them control over sensitive data and operations. This issue affects users who have access to Azure Compute Gallery, which is used to manage and deploy virtual machines. To protect against this risk, ensure that access controls are strictly enforced and regularly review user permissions.

Original title

'.../...//' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally.

Original description

'.../...//' in Azure Compute Gallery allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 6.7

Vulnerability type

CWE-35

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26124

Published: 5 Mar 2026 · Updated: 14 Mar 2026 · First seen: 6 Mar 2026