Jan 2026: Azure Data Explorer Information Disclosure Vulnerability
CVE-2026-21524 Published on January 22, 2026
Azure Data Explorer Information Disclosure Vulnerability
Exposure of sensitive information to an unauthorized actor in Azure Data Explorer allows an unauthorized attacker to disclose information over a network.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2026-21524 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2026-21524
Want to know whenever a new CVE is published for Microsoft Azure Data Explorer? stack.watch will email you.
Affected Versions
Microsoft Azure Data Explorer Version - is affected by CVE-2026-21524Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.