Kaspersky ID:
KLA91112
Detect Date:
06/18/2026
Updated:
06/29/2026

Description

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. An elevation of privilege vulnerability in Microsoft Azure Synapse can be exploited remotely to gain privileges.
  2. An elevation of privilege vulnerability in Azure Bot Service can be exploited remotely to gain privileges.
  3. An information disclosure vulnerability in Microsoft Cost Management can be exploited remotely to obtain sensitive information.
  4. An elevation of privilege vulnerability in Azure Active Directory can be exploited remotely to gain privileges.

Original advisories

Exploitation

Related products

CVE list

  • CVE-2026-32174
    critical
  • CVE-2026-47633
    critical
  • CVE-2026-45480
    critical
  • CVE-2026-48584
    critical

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com

Found an inaccuracy in the description of this vulnerability? Let us know!
Kaspersky Next
Let’s go Next: redefine your business’s cybersecurity
Learn more
New Kaspersky!
Your digital life deserves complete protection!
Learn more
Do you want to save your changes?
Your message has been sent successfully.