CVE-2025-64663 | Microsoft Azure Cognitive Service for Language Custom Question Answering server-side request forgery

A vulnerability categorized as critical has been discovered in Microsoft Azure Cognitive Service for Language. This affects an unknown part of the component Custom Question Answering. The manipulation results in server-side request forgery.

This vulnerability was named CVE-2025-64663. The attack may be performed from remote. There is no available exploit.

This product is provided as a managed service, meaning users do not have the ability to maintain vulnerability countermeasures themselves.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.VulDB Recent EntriesRead More