What the vulnerability does
01Description
Azure Compute Gallery Elevation of Privilege Vulnerability
CVE-2024-21424
MEDIUM
CVE-2024-21424: Azure Compute Gallery Elevation of Privilege Vulnerability
CVSS base score
6.5/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
Key dates
02Disclosure timeline
April 9, 2024
CVE published
May 3, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-13103 D-Link DIR-816 A2 Virtual Service form2AddVrtsrv.cgi access control
CVE-2026-5171
CVE-2026-45282 Nextcloud: Logged-in user bypasses share password and download restrictions on Text attachments via documentId leads to unauthorized file access
CVE-2024-34107 Adobe Commerce | Improper Access Control (CWE-284)
CVE-2026-41270 Flowise: SSRF Protection Bypass via Unprotected Built-in HTTP Modules in Custom Function Sandbox
