CVE Catalog
CVE-2026-48584
CriticalCVSS 9.9Exploitation Probability (EPSS)
Low risk0.50%
39th percentile — higher than 39% of all known CVEs
Summary
A vulnerability in Azure Synapse allows execution with unnecessary privileges. An authorized attacker can remotely elevate privileges over a network.
Risk Assessment
The risk involves potential privilege escalation by an attacker, which could lead to unauthorized control over resources and data within the Azure Synapse environment.
Recommendation
It is recommended to immediately apply patches provided by Microsoft and review permission configurations in Azure Synapse to minimize unnecessary privileges.
Original NVD description (English source)
Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges over a network.

