HIGHCVE-2026-21226Published Modified CNA microsoft
CVE-2026-21226: Azure Core shared client library for Python Remote Code Execution Vulnerability
Deserialization of untrusted data in Azure Core shared client library for Python allows an authorized attacker to execute code over a network.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- 1.38.0
- Affected Products
- 1
Fix available
1.38.0
Affected packages
- Microsoft / Azure Core shared client library for Python< 1.38.0 (from 1.1.0)
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C