Lucene search
K

22 matches found

NVD
NVD
added 2026/06/19 9:17 p.m.9 views

CVE-2026-48584

Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges over a network...

9.9CVSS0.005EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/19 8:27 p.m.15 views

CVE-2026-48584 Microsoft Azure Synapse Elevation of Privilege Vulnerability

...

9.9CVSS0.005EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/19 8:27 p.m.5 views

CVE-2026-48584 Microsoft Azure Synapse Elevation of Privilege Vulnerability

...

9.9CVSS5.8AI score0.005EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:27 p.m.8 views

EUVD-2026-38088

Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges over a network...

9.9CVSS5.9AI score0.005EPSS
Exploits0References1
CVE
CVE
added 2026/06/19 8:27 p.m.30 views

CVE-2026-48584

CVE-2026-48584 affects Microsoft Azure Synapse. An authorized attacker with low privileges and network access can execute with unnecessary privileges to elevate to higher privileges across the system, with potential impact to confidentiality, integrity and availability (CVSS 3.1: CRITICAL, AV:N/A...

9.9CVSS5.9AI score0.005EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.15 views

PT-2026-51034

Name of the Vulnerable Software and Affected Versions Azure Synapse affected versions not specified Description Execution with unnecessary privileges allows an authorized attacker to elevate privileges over a network. Recommendations At the moment, there is no information about a newer version th...

9.9CVSS5.9AI score0.005EPSS
Exploits0References7
Microsoft CVE
Microsoft CVE
added 2026/06/18 2:0 p.m.9 views

Microsoft Azure Synapse Elevation of Privilege Vulnerability

Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges over a network...

9.9CVSS5.9AI score0.005EPSS
Exploits0
MSRC
MSRC
added 2022/09/01 7:0 a.m.7 views

Vulnerability Fixed in Azure Synapse Spark

Summary Microsoft takes a proactive approach to continually probe our defenses, hunt for vulnerabilities, and seek new, innovative ways to protect our customers. Security researchers are an important part of this effort, and our collaborative partnership is critical in a world where cybersecurity...

7.2AI score
Exploits0
MSRC
MSRC
added 2022/09/01 7:0 a.m.16 views

Vulnerability Fixed in Azure Synapse Spark

Summary Summary Microsoft takes a proactive approach to continually probe our defenses, hunt for vulnerabilities, and seek new, innovative ways to protect our customers. Security researchers are an important part of this effort, and our collaborative partnership is critical in a world where...

2.8AI score
Exploits0
MSRC
MSRC
added 2022/09/01 7:0 a.m.7 views

Azure Synapse Spark で修正された脆弱性について

本ブログは、Vulnerability Fixed in Azure Synapse Spark の抄訳版です。最新の情報は原文を参照してください。 概...

1.3AI score
Exploits0
OSV
OSV
added 2022/06/20 8:16 p.m.9 views

MAL-2022-1384 Malicious code in azure-synapse-access-control (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95dada696a346729671364e7b943d286a369faca7422cf3cfaef0f1e956c0591 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:16 p.m.6 views

Malicious code in azure-synapse-access-control (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95dada696a346729671364e7b943d286a369faca7422cf3cfaef0f1e956c0591 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:10 p.m.4 views

Malicious code in azure-synapse-access-control-samples-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e9af60e8bc324de9be2c2572cf5b0b41c41572b7f9cbb0c9714dca1bf0b5ee92 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:10 p.m.7 views

MAL-2022-1385 Malicious code in azure-synapse-access-control-samples-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e9af60e8bc324de9be2c2572cf5b0b41c41572b7f9cbb0c9714dca1bf0b5ee92 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Malwarebytes
Malwarebytes
added 2022/06/15 1:17 p.m.238 views

Update now!  Microsoft patches Follina, and many other security updates

The June 2022 Patch Tuesday may go down in history as the day that Follina got patched, but there was a host of other important updates. And not just from Microsoft. Many other software vendors follow the pattern of monthly updates set by the people in Redmond. Microsoft Microsoft released update...

9.3CVSS9.5AI score0.99374EPSS
Exploits67
BDU FSTEC
BDU FSTEC
added 2022/05/13 12:0 a.m.7 views

The vulnerability of the external data integration driver Magnitude Simba Amazon Redshift ODBC in cloud services like Azure Data Factory and Azure Synapse allows a hacker to execute arbitrary code.

The vulnerability of the external data integration driver Magnitude Simba Amazon Redshift ODBC in cloud services like Azure Data Factory and Azure Synapse lies in the lack of authentication for the critical function. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...

9.1CVSS8AI score0.03686EPSS
Exploits0References7Affected Software1
Malwarebytes
Malwarebytes
added 2022/05/11 2:36 p.m.101 views

Update now! Microsoft releases patches, including one for actively exploited zero-day

Microsoft has released patches for 74 security problems, including fixes for seven “critical” vulnerabilities, and an actively exploited zero-day vulnerability that affects all supported versions of Windows. First, well look at the actively exploited zero-day. Then well discuss two zero-days that...

9.3CVSS2AI score0.80933EPSS
Exploits3
CISA
CISA
added 2022/05/10 12:0 a.m.12 views

Microsoft Releases Security Advisory for Azure Data Factory and Azure Synapse Pipelines

Microsoft has released a security advisory to address a remote code execution vulnerability affecting Azure Data Factory and Azure Synapse Pipelines. A remote attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review...

2.9AI score
Exploits0References1
MSRC
MSRC
added 2022/05/09 7:0 a.m.36 views

Vulnerability mitigated in the third-party Data Connector used in Azure Synapse pipelines and Azure Data Factory (CVE-2022-29972)

Summary Microsoft recently mitigated a vulnerability in Azure Data Factory and Azure Synapse pipelines. The vulnerability was specific to the third-party Open Database Connectivity ODBC driver used to connect to Amazon Redshift in Azure Synapse pipelines and Azure Data Factory Integration Runtime...

7.8CVSS7.7AI score0.03686EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/05/09 7:0 a.m.81 views

Upcoming improvements to Azure Data Factory and Azure Synapse Pipeline infrastructure in response to CVE-2022-29972

Executive Summary Microsoft recently mitigated and remediated a vulnerability affecting Azure Data Factory and Azure Synapse Pipelines. The vulnerability was found in the third-party ODBC data connector used to connect to Amazon Redshift, in Integration Runtime IR in Azure Synapse Pipelines, and...

7.8CVSS8.2AI score0.03686EPSS
Exploits0
Rows per page
Query Builder