Azure Linux VMs: Privilege Elevation via Local Attack

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Azure Linux VMs: Privilege Elevation via Local Attack

CVE-2026-23665

Summary

A security issue in Azure Linux Virtual Machines could allow a malicious user with authorized access to take control of the system. This is a concern because it could lead to unauthorized changes to the system or data. Azure is working to resolve this issue, and users should follow their guidance to apply any necessary updates or patches.

Original title

Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally.

Original description

Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-122 Heap-based Buffer Overflow

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23665

Published: 10 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026