False Positive – SQL Vulnerability Findings Control Flagged Across Subscriptions

Mohan Srinivas Subramanian (MINDTREE LIMITED) 21 Reputation points Microsoft External Staff
2026-05-28T21:47:03.6966667+00:00

Hi Team,

The control “SQL databases should have vulnerability findings resolved” is currently being flagged across multiple subscriptions.

  1. AIA Pricing Engine
  2. AIA Pricing Engine - Prod

Upon validation, we confirmed the following:

  • There are no active or outstanding vulnerability findings present in the affected SQL databases.
  • The Defender/Advisor recommendation shows 0 unhealthy databases and no failed checks.
  • The flagged state appears to be a false positive, likely due to a control evaluation or reporting lag/inconsistency.

Impact Assessment:

  • No immediate security risk identified.
  • All applicable SQL resources are compliant with the control requirement. User's image
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.