CVE Catalog

CVE-2026-48584

CriticalCVSS 9.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.50%

39th percentile — higher than 39% of all known CVEs

Summary

A vulnerability in Azure Synapse allows execution with unnecessary privileges. An authorized attacker can remotely elevate privileges over a network.

Risk Assessment

The risk involves potential privilege escalation by an attacker, which could lead to unauthorized control over resources and data within the Azure Synapse environment.

Recommendation

It is recommended to immediately apply patches provided by Microsoft and review permission configurations in Azure Synapse to minimize unnecessary privileges.

Original NVD description (English source)

Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS