Microsoft Azure Kubernetes Service — known CVE vulnerabilities
Every CVE whose affected-product data names Microsoft Azure Kubernetes Service, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2026-33105 — CVSS 10.0 (critical): Improper authorization in Microsoft Azure Kubernetes Service allows an unauthorized attacker to elevate privileges over a network.
CVE-2026-32193 — CVSS 8.8 (high): Improper limitation of a pathname to a restricted directory ('path traversal') in Microsoft Azure Kubernetes Service allows an authorized…