// Alert

Microsoft Azure threat report

CVE-2026-48567 is an elevation-of-privilege vulnerability in Azure HorizonDB, a preview PostgreSQL-compatible database for AI workloads. The flaw allows low-privilege users with credentialed access to escalate to administrative control, potentially exposing AI training data, vector indexes, and pipeline credentials. Microsoft disclosed the vulnerability via MSRC; preview service status may affect automatic patching availability. Affected organizations should immediately audit HorizonDB instances, rotate credentials, and revoke over-privileged service principals.

// Get alerts for Microsoft Azure