2 matches found
CVE-2026-26145
CVE-2026-26145 concerns Microsoft Azure Synapse with an elevation-of-privilege flaw caused by improper access control. Affected software is Azure Synapse; the core issue is inadequate access controls that permit an authorized attacker to elevate privileges over a network. The public-facing materi...
CVE-2026-48584
CVE-2026-48584 affects Microsoft Azure Synapse. An authorized attacker with low privileges and network access can execute with unnecessary privileges to elevate to higher privileges across the system, with potential impact to confidentiality, integrity and availability (CVSS 3.1: CRITICAL, AV:N/A...