Critical CVSS 4.8 EPSS 0.00359 2026-07 archive

Executive Summary

Improper access control in Azure Synapse allows an authorized attacker to elevate privileges over a network.

Overview

4.8
CVSS MEDIUM
Critical
MS Severity
Not Exploited
MS Exploit Status
N/A
MS Exploit Likelihood
Category Elevation of Privilege
Released Jul 14 2026
Last Updated Jul 14 2026
Publicly Disclosed No
CISA KEV Not Listed
Known Exploits None Known
EPSS Score 0.00359 — 0.28006 percentile

CVSS Vector

ATTACK VECTOR
Network
ATTACK COMPLEXITY
High
PRIVILEGES REQUIRED
Low
USER INTERACTION
Required
SCOPE
Unchanged
CONFIDENTIALITY
High
INTEGRITY
None
AVAILABILITY
None
EXPLOIT CODE MATURITY
Proof-of-Concept
REMEDIATION LEVEL
Official Fix
REPORT CONFIDENCE
Confirmed
Temporal Score: 4.3

EPSS Score

0.00359
probability of exploitation in the next 30 days
0.28006 percentile - updated 2026-07-14
View on FIRST.org

Known Exploits

Acknowledgments

Anonymous