VDB
GCVE-110-CLOUD-2023-0044
GCVE-110-CLOUD-2023-0044
Advisory Published
Azure on-premises data gateway allows data transfer between an on-prem customer network and
several Azure cloud services, and also enables a connected agent installed locally in an
on-prem network to perform certain actions remotely. NetSPI discovered a deserialization
issue in Microsoft Power Platform connectors that lead to RCE on several Azure backend
servers that processed call backs from on-premises data gateways, effectively allowing
unauthorized cross-tenant access.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Azure | On-premises data gateway | — | — |
| Azure | Cloud Services | — | — |
Browse GCVE Records
73,834 records in the GCVE database · Updated July 19, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.