CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
84.2%
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, cause denial of service.
Below is a complete list of vulnerabilities:
CVE-2022-35782 high
CVE-2022-35790 high
CVE-2022-33646 high
CVE-2022-35799 high
CVE-2022-35814 high
CVE-2022-35809 high
CVE-2022-35811 high
CVE-2022-35808 high
CVE-2022-34685 high
CVE-2022-35785 high
CVE-2022-35817 high
CVE-2022-35789 high
CVE-2022-35775 high
CVE-2022-35772 high
CVE-2022-35780 high
CVE-2022-35773 critical
CVE-2022-35788 high
CVE-2022-35819 high
CVE-2022-35781 high
CVE-2022-35784 high
CVE-2022-35801 high
CVE-2022-35776 high
CVE-2022-35802 critical
CVE-2022-33640 critical
CVE-2022-35774 warning
CVE-2022-30175 critical
CVE-2022-35791 high
CVE-2022-35783 warning
CVE-2022-35787 warning
CVE-2022-34686 high
CVE-2022-35818 high
CVE-2022-35800 warning
CVE-2022-35810 high
CVE-2022-35816 high
CVE-2022-35813 high
CVE-2022-35806 critical
CVE-2022-35812 warning
CVE-2022-35779 critical
CVE-2022-30176 critical
CVE-2022-34687 critical
CVE-2022-35821 warning
CVE-2022-35807 high
CVE-2022-35824 high
CVE-2022-35786 high
CVE-2022-35815 high
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30175
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30176
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33640
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-33646
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34685
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34686
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34687
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35772
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35773
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35774
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35775
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35776
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35779
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35780
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35781
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35782
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35783
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35784
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35785
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35786
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35787
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35788
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35789
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35790
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35791
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35799
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35800
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35801
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35802
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35806
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35807
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35808
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35809
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35810
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35811
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35812
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35813
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35814
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35815
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35816
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35817
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35818
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35819
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35821
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35824
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Azure/