Microsoft · Azure Logic Apps · CVE-2026-21227
**Name of the Vulnerable Software and Affected Versions**
Azure Logic Apps (affected versions not specified)
**Description**
An improper limitation of a pathname to a restricted directory ('path traversal') exists in Azure Logic Apps. This allows an unauthorized attacker to elevate privileges over a network.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.