CVE-2025-64663 | Microsoft Azure Cognitive Service for Language Custom Question Answering server-side request forgery
A vulnerability categorized as critical has been discovered in Microsoft Azure Cognitive Service for Language. This affects an unknown part of the component Custom Question Answering. The manipulation results in server-side request forgery.
This vulnerability was named CVE-2025-64663. The attack may be performed from remote. There is no available exploit.
This product is provided as a managed service, meaning users do not have the ability to maintain vulnerability countermeasures themselves.