CVE-2026-48567
Received
Received - Intake
BaseFortify
Publication date: 2026-06-04
Last updated on: 2026-06-04
Assigner: Microsoft Corporation
Description
Description
Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| microsoft | azure_horizondb | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-290 | This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an authentication bypass in Azure HorizonDB that allows an attacker to spoof authentication mechanisms. By doing so, the attacker can gain unauthorized access and elevate their privileges over the network.
How can this vulnerability impact me? :
The impact of this vulnerability is severe because it allows an attacker to gain elevated privileges without proper authentication. This can lead to unauthorized control over the affected system, potentially resulting in high integrity and availability damage.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70