May 2026: Azure Stack HCI Information Disclosure Vulnerability
CVE-2026-26147 Published on May 22, 2026

Azure Stack HCI Information Disclosure Vulnerability
Improper input validation in Azure Compute Gallery allows an authorized attacker to disclose information over a network.

Vendor Advisory NVD

Weakness Type

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.


Products Associated with CVE-2026-26147

Want to know whenever a new CVE is published for Microsoft Azure Stack Hci? stack.watch will email you.

Microsoft Azure Stack Hci
 

Affected Versions

Microsoft Azure Stack HCI Version - is affected by CVE-2026-26147

Exploit Probability

EPSS
0.11%
Percentile
28.42%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.