VDB

GCVE-110-CLOUD-2025-0037

GCVE-110-CLOUD-2025-0037
Advisory Published
Vulnetix · Advisory published April 15, 2025
Varonis Threat Labs discovered a vulnerability in Azure SQL Server allowing privileged users to create malicious firewall rules that can delete Azure resources when triggered by admin actions. The exploit involves manipulating rule names via TSQL to inject destructive commands, potentially leading to large-scale data loss in affected Azure accounts.

Affected Products

VendorProductVersionsPlatforms
AzureCloud Services

Browse GCVE Records

72,148 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›