CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-21529

Improper neutralization of input during web page generation ('cross-site scripting') in Azure HDInsights allows an authorized attacker to perform spoofing over a network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.2%

CVSS Severity

CVSS v3 Score 5.7

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21529

Products affected by CVE-2026-21529

Microsoft » Azure Hdinsight » Version: N/A

cpe:2.3:a:microsoft:azure_hdinsight:-
Microsoft » Azure Hdinsight » Version: 4.0

cpe:2.3:a:microsoft:azure_hdinsight:4.0
Microsoft » Azure Hdinsight » Version: 5.0

cpe:2.3:a:microsoft:azure_hdinsight:5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-21529

Products

Pricing

Contact Us