Lucene search
K
MicrosoftAzure Machine Learning

8 matches found

CVE
CVE
added 2023/02/14 7:32 p.m.113 views

CVE-2023-23382

CVE-2023-23382 affects Azure Machine Learning Compute Instance. Multiple sources describe an information-disclosure vulnerability in the Compute Instance that can be exploited remotely to access sensitive data. CVSSv3 base score is 6.5 (MEDIUM) with network access, low attack complexity and low p...

6.5CVSS6.5AI score0.03115EPSS
CVE
CVE
added 2023/04/11 7:14 p.m.106 views

CVE-2023-28312

CVE-2023-28312 affects Azure Machine Learning. It is an information-disclosure vulnerability in the Azure Machine Learning component that can allow an attacker located in the same secured network (attack vector: adjacent) to access system logs or sensitive data. The CVSSv3.1 base score is 6.5 (ME...

6.5CVSS6.4AI score0.01752EPSS
CVE
CVE
added 2025/04/30 5:14 p.m.90 views

CVE-2025-30390

CVE-2025-30390 affects Microsoft Azure Machine Learning Compute. Described as an improper authorization vulnerability that enables an authorized attacker to elevate privileges over a network. Root cause is improper authorization in Azure; impact is privilege escalation (high/critical). Exploitati...

9.9CVSS9.4AI score0.00776EPSS
CVE
CVE
added 2025/07/18 5:4 p.m.45 views

CVE-2025-49747

CVE-2025-49747 is a privilege-escalation vulnerability affecting Microsoft Azure Machine Learning reported as missing authorization. Affected component: Azure Machine Learning (machine learning services platform). Root cause per description: insufficient access control that allows an authorized a...

9.9CVSS6.5AI score0.00645EPSS
CVE
CVE
added 2025/07/18 5:4 p.m.37 views

CVE-2025-49746

CVE-2025-49746 affects Microsoft Azure Machine Learning. The vulnerability is caused by improper authorization, enabling an attacker with network access to escalate privileges within the affected service. Documented impact is privilege escalation with high confidentiality, integrity, and availabi...

9.9CVSS6.5AI score0.00692EPSS
CVE
CVE
added 2025/07/18 5:4 p.m.33 views

CVE-2025-47995

Azure Machine Learning is identified in CVE-2025-47995 as having weak authentication that enables a network-based privilege escalation by an authorized attacker. The entry derives from Microsoft/Red Hat and multiple security sources, describing the vulnerability as affecting Microsoft Azure Machi...

8.8CVSS6.7AI score0.0063EPSS
CVE
CVE
added 2026/05/12 4:59 p.m.28 views

CVE-2026-33833

Azure Machine Learning is affected where the issue occurs in the downstream component’s output handling, described as an improper neutralization of special elements that enables network spoofing. The CVE-2026-33833 entry notes an attacker could exploit this via a network vector with no user inter...

8.2CVSS5.8AI score0.00498EPSS
CVE
CVE
added 2026/05/07 8:58 p.m.18 views

CVE-2026-32207

CVE-2026-32207 concerns an XSS vulnerability in Azure Machine Learning Notebook/Notebook UI where improper neutralization of input during web page generation enables an unauthenticated attacker to spoof content over the network. Underlying cause: improper sanitization of user-controlled input in ...

8.8CVSS5.8AI score0.00579EPSS