VU#284781 | Microsoft Azure Backup for AKS 2026-03-17 confused deputy

A vulnerability was found in Microsoft Azure Backup for AKS 2026-03-17. It has been declared as critical. This issue affects some unknown processing of the component Backup Handler. Such manipulation leads to unintended intermediary.

The attack can be executed remotely. Additionally, an exploit exists.

The real existence of this vulnerability is still doubted at the moment.

This product is a managed service, so users do not have direct control over vulnerability countermeasures. It is best practice to apply a patch to resolve this issue.

Microsoft, CERT/CC, and MITRE rejected a CVE assignment.

VU#284781 | Microsoft Azure Backup for AKS 2026-03-17 confused deputy

Post correlati

CVE-2024-6567 | Ebook Store Plugin up to 5.8001 on WordPress information disclosure

CVE-2025-62017 | Kallyas Plugin up to 4.22.0 on WordPress authorization

CVE-2025-6543 | Citrix NetScaler ADC/NetScaler Gateway prior 13.1-37.236-FIPS/13.1-59.19/14.1-47.46 memory corruption (CTX694788)

CVE-2024-26812 | Linux Kernel up to 6.1.83/6.6.23/6.7.11/6.8.2 INTx eventfd_signal Privilege Escalation