Microsoft Mitigates RCE Vulnerability Affecting Azure Synapse and Data Factory

In Hacker News by Blog Writer

Post Sharing
Microsoft on Monday disclosed that it mitigated a security flaw affecting Azure Synapse and Azure Data Factory that, if successfully exploited, could result in remote code execution.
The vulnerability, tracked as CVE-2022-29972, has been codenamed “SynLapse” by researchers from Orca Security, who reported the flaw to Microsoft in January 2022.

“The vulnerability was specific to