Azure Logic Apps

azure_logic_apps

Vendor: Microsoft • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-42823 1Microsoft 1Azure Logic Apps May 14, 2026 May 12, 2026 N/A· v4 9.9 CRITICAL· v3 N/A· v2 Improper access control in Azure Logic Apps allows an authorized attacker to elevate privileges over a network.
CVE-2026-32171 1Microsoft 1Azure Logic Apps Apr 27, 2026 Apr 14, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 Insufficiently protected credentials in Azure Logic Apps allows an authorized attacker to elevate privileges over a network.
CVE-2026-21227 1Microsoft 1Azure Logic Apps Feb 3, 2026 Jan 22, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper limitation of a pathname to a restricted directory ('path traversal') in Azure Logic Apps allows an unauthorized attacker to elevate privileges over a network.
CVE-2023-36019 1Microsoft 2Azure Logic Apps Power Platform Nov 21, 2024 Dec 12, 2023 N/A· v4 7.4 HIGH· v3 N/A· v2 Microsoft Power Platform Connector Spoofing Vulnerability