What is the CVSS score of CVE-2026-21228?

CVE-2026-21228 has a CVSS 3.1 base score of 8.1 (High). CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Azure are affected by CVE-2026-21228?

A critical vulnerability in Azure Local enables unauthenticated remote code execution through improper certificate validation, potentially allowing attackers to compromise on-premises Azure…. A patch is available.

How to fix or mitigate CVE-2026-21228?

Within 24 hours: Identify and inventory all Azure Local deployments in your environment and assess network exposure. Within 7 days: Implement network segmentation to restrict access to Azure Local systems and enable enhanced monitoring for suspicious certificate validation errors or unexpected connections. Within 30 days: Establish a vendor contact plan with Microsoft for patch availability and develop a staged deployment plan for immediate patching once released.

Azure CVE-2026-21228

HIGH

Improper Certificate Validation (CWE-295)

2026-02-10 secure@microsoft.com

Azure Azure Local

8.1

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

8.1 HIGH

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:02 vuln.today

CVE Published

Feb 10, 2026 - 18:16 nvd

HIGH 8.1

DescriptionCVE.org

Improper certificate validation in Azure Local allows an unauthorized attacker to execute code over a network.

AnalysisAI

Remote code execution in Azure Local stems from improper certificate validation, enabling unauthenticated attackers to execute arbitrary code over the network without user interaction. This HIGH severity vulnerability (CVSS 8.1) affects Azure and Azure Local deployments, with no patch currently available. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Craft malicious certificate

Exploit

Send over network to Azure Local

Execution

Bypass certificate validation

Impact

Execute arbitrary code

Access

Craft malicious certificate

Exploit

Send over network to Azure Local

Execution

Bypass certificate validation

Impact

Execute arbitrary code

Vulnerability AssessmentAI

Exploitation	Azure Local must be exposed to network traffic without proper certificate pinning or validation enabled. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 8.1 (HIGH). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	A remote attacker without authentication could exploit this vulnerability to compromise the affected system.
Remediation	Monitor vendor advisories for a patch. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify and inventory all Azure Local deployments in your environment and assess network exposure. …

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2026-21228 vulnerability details – vuln.today

Back

Azure CVE-2026-21228

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Share

External POC / Exploit Code