Description
Improper authorization in Azure AI Foundry allows an unauthorized attacker to elevate privileges over a network.
Published: 2026-04-02
Score: 10 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Elevation of Privilege
Action: Immediate Patch
AI Analysis

Impact

Improper authorization in Microsoft Azure AI Foundry allows an attacker with network access to bypass controls and gain higher privileges. Once elevated, the attacker can read, modify, or delete AI models, training data, or configuration settings, compromising confidentiality, integrity, and potentially availability. The weakness corresponds to improper authorization and privilege or access control defects.

Affected Systems

Microsoft Azure AI Foundry is affected. No version information is provided, suggesting the flaw exists across current releases of the service.

Risk and Exploitability

The severity is high, reflected in a score of 10, labeling it critical. Exploit probability is low, with an estimate below 1%, and it is not listed in the Known Exploited Vulnerabilities catalog. Attackers must reach the Azure AI Foundry instance over the network, implying a network‑based attack surface. Without remediation, a successful privilege escalation could allow extensive harm to the AI models and associated data.

Generated by OpenCVE AI on April 7, 2026 at 02:53 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the Microsoft patch or update provided in the official update guide for Azure AI Foundry.
  • Restrict inbound access to the Azure AI Foundry deployment by limiting exposure to trusted IP ranges or VPNs.
  • Strengthen role‑based access controls within Azure AI Foundry to enforce least privilege.
  • Continuously monitor audit logs for suspicious privilege changes or access to models and configuration.
  • Keep all Azure AI Foundry components and dependencies updated to the latest secure releases.

Generated by OpenCVE AI on April 7, 2026 at 02:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 06 Apr 2026 20:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-863
CPEs cpe:2.3:a:microsoft:azure_ai_foundry:-:*:*:*:*:*:*:*

Fri, 03 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 03 Apr 2026 00:15:00 +0000

Type Values Removed Values Added
Description Improper authorization in Azure AI Foundry allows an unauthorized attacker to elevate privileges over a network.
Title Azure AI Foundry Elevation of Privilege Vulnerability
First Time appeared Microsoft
Microsoft azure Ai Foundry
Weaknesses CWE-285
CPEs cpe:2.3:a:microsoft:azure_ai_foundry:*:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft azure Ai Foundry
References
Metrics cvssV3_1

{'score': 10, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C'}

Subscriptions

Microsoft Azure Ai Foundry
cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published:

Updated: 2026-04-30T14:42:47.070Z

Reserved: 2026-03-11T01:49:58.659Z

Link: CVE-2026-32213

cve-icon Vulnrichment

Updated: 2026-04-03T13:48:54.877Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-03T00:16:04.877

Modified: 2026-04-06T18:17:58.930

Link: CVE-2026-32213

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-07T07:55:21Z

Weaknesses