CVE-2026-21522

Name of the Vulnerable Software and Affected Versions Azure Compute Gallery (affected versions not specified) Microsoft ACI Confidential Containers (affected versions not specified)

Description A command injection issue exists in Azure Compute Gallery that could allow a locally authorized attacker to elevate privileges. The issue stems from improper neutralization of special elements used in a command. A related issue in Microsoft ACI Confidential Containers involves a failure to sanitize data at the management level, potentially allowing an attacker to elevate privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.