Microsoft Azure Web Apps
2 CVEs affecting Microsoft Azure Web Apps. Latest disclosed: 2026-04-02. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-32211 | Critical | 9.1 | 2026-04-02 | Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network. |
CVE-2024-38194 | High | 8.4 | 2024-09-10 | An authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network. |