CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
9.0%
Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | authentication_library | * | cpe:2.3:a:microsoft:authentication_library:*:*:*:*:*:java:*:* |
microsoft | authentication_library | * | cpe:2.3:a:microsoft:authentication_library:*:*:*:*:*:node.js:*:* |
microsoft | authentication_library | * | cpe:2.3:a:microsoft:authentication_library:*:*:*:*:*:.net:*:* |
microsoft | azure_identity_sdk | * | cpe:2.3:a:microsoft:azure_identity_sdk:*:*:*:*:*:go:*:* |
microsoft | azure_identity_sdk | * | cpe:2.3:a:microsoft:azure_identity_sdk:*:*:*:*:*:c\+\+:*:* |
microsoft | azure_identity_sdk | * | cpe:2.3:a:microsoft:azure_identity_sdk:*:*:*:*:*:.net:*:* |
microsoft | azure_identity_sdk | * | cpe:2.3:a:microsoft:azure_identity_sdk:*:*:*:*:*:java:*:* |
microsoft | azure_identity_sdk | * | cpe:2.3:a:microsoft:azure_identity_sdk:*:*:*:*:*:python:*:* |
microsoft | azure_identity_sdk | * | cpe:2.3:a:microsoft:azure_identity_sdk:*:*:*:*:*:javascript:*:* |