Lucene search
HistoryOct 10, 2023 - 6:15 p.m.
CVE-2023-36419
azure
hdinsight
apache
oozie
workflow
scheduler
elevation of privilege
vulnerability
nvd
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.4 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.0%
Azure HDInsight Apache Oozie Workflow Scheduler XXE Elevation of Privilege Vulnerability
Affected configurations
Node
microsoftazure_hdinsightsMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | azure_hdinsights | 1.0 | cpe:2.3:a:microsoft:azure_hdinsights:1.0:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Azure HDInsight",
"cpes": [
"cpe:2.3:a:microsoft:azure_hdinsights:1.5.42.0:*:*:*:*:*:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "1.0",
"lessThan": "2308221128",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
prion
prion
Privilege escalation
2023-10-10 18:15:00
mscve
mscve
cvelist
cvelist
nvd
nvd
CVE-2023-36419
2023-10-10 18:15:12
thn
thn
kaspersky
kaspersky
KLA61357 Multiple vulnerabilities in Microsoft Azure
2023-10-10 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - October 2023
2023-10-10 20:34:57
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.4 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.0%
Related for CVE-2023-36419