24 matches found
CVE-2026-23659
Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized attacker to disclose information over a network...
EUVD-2026-13177
Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized attacker to disclose information over a network...
CVE-2026-23659
Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized attacker to disclose information over a network...
CVE-2026-23659 Azure Data Factory Information Disclosure Vulnerability
...
CVE-2026-23659 Azure Data Factory Information Disclosure Vulnerability
...
CVE-2026-23659
Azure Data Factory contains an information disclosure vulnerability (CVE-2026-23659) that allows an unauthorized network actor to access sensitive data. The descriptor indicates exposure of information to unauthorized actors over a network, implying a potential data breach risk. Connected sources...
CVE-2026-23659
Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized attacker to disclose information over a network...
Azure Data Factory Information Disclosure Vulnerability
Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized attacker to disclose information over a network...
Microsoft Azure Data Factory 信息泄露漏洞
Microsoft Azure Data Factory is a cloud-based data integration service provided by Microsoft Corporation. There is an information leakage vulnerability in Microsoft Azure Data Factory. This vulnerability stems from the exposure of sensitive information to unauthorized participants, which may allo...
KLA90946 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Cloud Shell can be exploited remotely to gai...
PT-2026-26351
Azure Data Factory Information Disclosure Vulnerability CVE: CVE-2026-23659 PT-Identifier: PT-2026-26351 Vendor: Microsoft Product: Azure Data Factory CVSS: 8.6 Credits: n/a Description: Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized attack...
Lifecycle-Integrated Security for AI-Cloud Convergence in Cyber-Physical Infrastructure
The convergence of Artificial Intelligence AI inference pipelines with cloud infrastructure creates a dual attack surface where cloud security standards and AI governance frameworks intersect without unified enforcement mechanisms. AI governance, cloud security, and industrial control system...
PT-2025-15686 · Schneider Electric · Trio Q Data Radio +1
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A security issue exists due to insecure storage of sensitive information, potentially leading to unauthorized access of confidential data. This could happen when a malicious user with physic...
Octo Tempest cybercriminal group is “a growing concern”—Microsoft
Octo Tempest is believed to be a group of native English speaking cybercriminals that uses social engineering campaigns to compromise organizations all over the world. Initially the group made a name for itself by SIM swapping. SIM swapping, also known as SIM jacking, is the act of illegally taki...
Malicious code in azure-arm-datafactory-samples-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware afc9578f0a9b9c2a81182d4350c4538a9b3478ed151ac3f4c89f19dc1252b004 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Update now! Microsoft patches Follina, and many other security updates
The June 2022 Patch Tuesday may go down in history as the day that Follina got patched, but there was a host of other important updates. And not just from Microsoft. Many other software vendors follow the pattern of monthly updates set by the people in Redmond. Microsoft Microsoft released update...
The vulnerability of the external data integration driver Magnitude Simba Amazon Redshift ODBC in cloud services like Azure Data Factory and Azure Synapse allows a hacker to execute arbitrary code.
The vulnerability of the external data integration driver Magnitude Simba Amazon Redshift ODBC in cloud services like Azure Data Factory and Azure Synapse lies in the lack of authentication for the critical function. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...
Microsoft Releases Security Advisory for Azure Data Factory and Azure Synapse Pipelines
Microsoft has released a security advisory to address a remote code execution vulnerability affecting Azure Data Factory and Azure Synapse Pipelines. A remote attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review...
Vulnerability fixed in Microsoft Azure
A vulnerability has been fixed in Microsoft Azure. The vulnerability allows an authenticated malicious person to execute arbitrary code. The vulnerability is in a driver used to run in Azure Synapse pipelines and Azure Data Factory Integration Runtime IR to connect to Amazon Redshift. The malicio...
Upcoming improvements to Azure Data Factory and Azure Synapse Pipeline infrastructure in response to CVE-2022-29972
Executive Summary Microsoft recently mitigated and remediated a vulnerability affecting Azure Data Factory and Azure Synapse Pipelines. The vulnerability was found in the third-party ODBC data connector used to connect to Amazon Redshift, in Integration Runtime IR in Azure Synapse Pipelines, and...