216.73.217.172

CVE-2026-33833

· Published 12/05/2026 18:17 · Modified 13/05/2026 15:34

Labels: CVE-2026-33833 2026-05-12CVE-2026-33833CWE-74[email protected]

Essential information

Published
12/05/2026 18:17
Modified
13/05/2026 15:34
Author
Creator
CVSS
8.2 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N

CVSS metrics

Description

Improper neutralization of special elements in output used by a downstream component ('injection') in Azure Machine Learning allows an unauthorized attacker to perform spoofing over a network.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
microsoft / azure machine learning cpe:2.3:a:microsoft:azure_machine_learning:*:*:*:*:*:*:*:*

References