Microsoft published a security advisory highlighting vulnerabilities in the following products on the 9th of May 2022. It is recommended that you take the necessary precautions by ensuring your products are always updated.
Azure Data Factory
Azure Synapse Pipeline
For more information on these updates, you can follow this URL:
https://msrc.microsoft.com/update-guide/vulnerability/ADV220001
The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.
PDF Download: Microsoft Security Advisory.pdf
References
Microsoft Security Advisory (9th May 2022). Retrieved from Microsoft
https://msrc.microsoft.com/update-guide/vulnerability/ADV220001
Microsoft releases fixes for Azure flaw allowing RCE attacks (9th May 2022). Retrieved from Beeping Computer. https://www.bleepingcomputer.com/news/security/microsoft-releases-fixes-for-azure-flaw-allowing-rce-attacks/