Lucene search
HistorySep 12, 2023 - 5:15 p.m.
CVE-2023-38156
cve
2023
38156
azure
hdinsight
apache
ambari
elevation of privilege
vulnerability
nvd
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.1%
Azure HDInsight Apache Ambari JDBC Injection Elevation of Privilege Vulnerability
Affected configurations
Node
microsoftazure_hdinsightsMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | azure_hdinsights | 1.0 | cpe:2.3:a:microsoft:azure_hdinsights:1.0:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Azure HDInsight",
"cpes": [
"cpe:2.3:a:microsoft:azure_hdinsights:1.5.42.0:*:*:*:*:*:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "1.0",
"lessThan": "2308221128",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
cnvd
cnvd
Microsoft Azure HDInsight Apache Ambari Elevation of Privilege Vulnerability
2023-09-15 00:00:00
prion
prion
Privilege escalation
2023-09-12 17:15:00
mscve
mscve
cvelist
cvelist
nvd
nvd
CVE-2023-38156
2023-09-12 17:15:21
thn
thn
kaspersky
kaspersky
KLA60565 Multiple vulnerabilities in Microsoft Azure
2023-09-12 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2023
2023-09-12 22:55:55
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.1%
Related for CVE-2023-38156