Improper Access Control in Azure Synapse by Microsoft
CVE-2026-26145
4.8MEDIUM
What is CVE-2026-26145?
A vulnerability in Azure Synapse allows an authorized attacker to gain elevated privileges through improper access control measures implemented within the product. This flaw can be exploited over a network, potentially leading to unauthorized actions or information leakage. Users and administrators should review the latest guidance from Microsoft regarding this vulnerability to implement necessary security measures.
Affected Version(s)
Azure Synapse -