CVE-2026-21227

Publication date

2026-01-22 22:47:37

Family

microsoft

State

PUBLISHED

Description

Improper limitation of a pathname to a restricted directory (path traversal) in Azure Logic Apps allows an unauthorized attacker to elevate privileges over a network.