Primary

Context

Microsoft Azure Compute Gallery Information Disclosure Vulnerability

Vulnerability

A vulnerability exists in Azure Compute Gallery due to the cleartext storage of sensitive information, such as secret tokens and keys. This flaw allows an authorized attacker to intercept and disclose this information over the network.

Impact

Exploitation of this vulnerability could lead to unauthorized disclosure of sensitive information, including secret tokens and keys.

Remediation

Users are required to update to version 2.14 of Microsoft ACI Confidential Containers. The source code for this version is available on GitHub.

Added: Feb 10, 2026, 6:25 PM

Updated: Feb 11, 2026, 1:39 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

2.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Azure Compute Gallery Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating