Mar 2026: Azure Data Factory Information Disclosure Vulnerability
CVE-2026-23659 Published on March 19, 2026
Azure Data Factory Information Disclosure Vulnerability
Exposure of sensitive information to an unauthorized actor in Azure Data Factory allows an unauthorized attacker to disclose information over a network.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2026-23659 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2026-23659
Want to know whenever a new CVE is published for Microsoft Azure Data Factory? stack.watch will email you.
Affected Versions
Microsoft Azure Data Factory Version - is affected by CVE-2026-23659Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.