Dismissed
(exclusively hosted service)
Permalink
CVE-2026-23658
8.6 HIGH
- CVSS version: 3.1
- Attack vector (AV):
- Attack complexity (AC):
- Privileges required (PR):
- User interaction (UI):
- Scope (S):
- Confidentiality impact (C):
- Integrity impact (I):
- Availability impact (A):
Azure DevOps: msazure Elevation of Privilege Vulnerability
Insufficiently protected credentials in Azure DevOps allows an unauthorized attacker to elevate privileges over a network.
References
- Azure DevOps: msazure Elevation of Privilege Vulnerability vendor-advisory patch
Affected products
Azure DevOps: msazure
- ==-