Microsoft Azure App Service On Azure Stack — known CVE vulnerabilities
Every CVE whose affected-product data names Microsoft Azure App Service On Azure Stack, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2019-1372 — CVSS 10.0 (critical): An remote code execution vulnerability exists when Azure App Service/ Antares on Azure Stack fails to check the length of a buffer prior to…
CVE-2018-8600 — CVSS 6.1 (medium): A Cross-site Scripting (XSS) vulnerability exists when Azure App Services on Azure Stack does not properly sanitize user provided input…
CVE-2025-53765 — CVSS 4.4 (medium): Exposure of private personal information to an unauthorized actor in Azure Stack allows an authorized attacker to disclose information…