cbcvebase.

Microsoft Azure Stack Edge vulnerabilities

4 known vulnerabilities affecting microsoft/azure_stack_edge.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH2

Vulnerabilities

Page 1 of 1
CVE-2022-37968P2CRITICALCVSS 10.0≥ 2.2.0, < 2.2.2088.55932022-10-11
CVE-2022-37968 [CRITICAL] CVE-2022-37968: Microsoft has identified a vulnerability affecting the cluster connect feature of Azure Arc-enabled Microsoft has identified a vulnerability affecting the cluster connect feature of Azure Arc-enabled Kubernetes clusters. This vulnerability could allow an unauthenticated user to elevate their privileges and potentially gain administrative control over the Kubernetes cluster. Additionally, because Azure Stack Edge allows customers to deploy Kubernetes work
nvd
CVE-2026-47643P2CRITICALCVSS 9.8≥ 2.2.0, < 3.3.2604.30972026-06-09
CVE-2026-47643 [CRITICAL] CWE-73 CVE-2026-47643: External control of file name or path in Azure Stack Edge allows an unauthorized attacker to execute External control of file name or path in Azure Stack Edge allows an unauthorized attacker to execute code over a network.
nvd
CVE-2023-21703P3HIGHCVSS 7.2≥ 2.2.0, < 1.6.2225.7732023-02-14
CVE-2023-21703 [HIGH] CWE-502 CVE-2023-21703: Azure Data Box Gateway Remote Code Execution Vulnerability Azure Data Box Gateway Remote Code Execution Vulnerability
nvd
CVE-2026-41098P3HIGHCVSS 8.4≥ 2.2.0, < 3.3.2604.30972026-06-09
CVE-2026-41098 [HIGH] CWE-79 CVE-2026-41098: Improper neutralization of input during web page generation ('cross-site scripting') in Azure Stack Improper neutralization of input during web page generation ('cross-site scripting') in Azure Stack Edge allows an authorized attacker to perform spoofing over a network.
nvd
Microsoft Azure Stack Edge vulnerabilities | cvebase