Azure Security Vulnerabilities
Local privilege escalation vulnerability allowed an attacker to misuse ESET's file operations during a restore operation from...
7.3CVSS
7.4AI Score
0.0004EPSS
8.1CVSS
8.1AI Score
0.001EPSS
Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege...
5.5CVSS
5.5AI Score
0.0004EPSS
7.1CVSS
7AI Score
0.0004EPSS
4.4CVSS
4.7AI Score
0.0005EPSS
7.5CVSS
7.5AI Score
0.001EPSS
The WordPress + Microsoft Office 365 / Azure AD | LOGIN plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pintra' shortcode in all versions up to, and including, 27.2 due to insufficient input sanitization and output escaping on user supplied attributes. This...
6.4CVSS
5.7AI Score
0.0004EPSS
7.8CVSS
6.9AI Score
0.0004EPSS
A security issue was discovered in azure-file-csi-driver where an actor with access to the driver logs could observe service account tokens. These tokens could then potentially be exchanged with external cloud providers to access secrets stored in cloud vault solutions. Tokens are only logged when....
6.5CVSS
6.3AI Score
0.0004EPSS
6.5CVSS
6.6AI Score
0.0005EPSS
8.8CVSS
9AI Score
0.001EPSS
Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege...
9CVSS
8.9AI Score
0.001EPSS
5.5CVSS
5.9AI Score
0.0004EPSS
8.4CVSS
9AI Score
0.0004EPSS
7.3CVSS
8.4AI Score
0.0004EPSS
6.2CVSS
9AI Score
0.0004EPSS
6.4CVSS
9.2AI Score
0.0004EPSS
6.5CVSS
9AI Score
0.0005EPSS
5.9CVSS
6.5AI Score
0.001EPSS
The azure-c-shared-utility is a C library for AMQP/MQTT communication to Azure Cloud Services. This library may be used by the Azure IoT C SDK for communication between IoT Hub and IoT Hub devices. An attacker can cause an integer wraparound or under-allocation or heap buffer overflow due to...
6CVSS
6.8AI Score
0.0004EPSS
7.3CVSS
7.6AI Score
0.0004EPSS
7.5CVSS
7.9AI Score
0.001EPSS
Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege...
9CVSS
9.1AI Score
0.001EPSS
7.8CVSS
8.1AI Score
0.0004EPSS
The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect AMQP_VALUE failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit...
9.8CVSS
9.3AI Score
0.0004EPSS
Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file operations to delete files without having proper...
7.8CVSS
7.7AI Score
0.001EPSS
5.3CVSS
6.1AI Score
0.0005EPSS
Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege...
9CVSS
9AI Score
0.001EPSS
6.8CVSS
7.1AI Score
0.0005EPSS
9CVSS
9.2AI Score
0.001EPSS
9.3CVSS
9.1AI Score
0.001EPSS
7.3CVSS
7.6AI Score
0.001EPSS
7.5CVSS
8.1AI Score
0.0005EPSS
6.5CVSS
7AI Score
0.001EPSS
The UAMQP is a general purpose C library for AMQP 1.0. During a call to open_get_offered_capabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the...
9.8CVSS
9.7AI Score
0.0004EPSS
Azure IPAM (IP Address Management) is a lightweight solution developed on top of the Azure platform designed to help Azure customers manage their IP Address space easily and effectively. By design there is no write access to customers' Azure environments as the Service Principal used is only...
9.8CVSS
9.4AI Score
0.001EPSS
IdentityModel Extensions for .NET provide assemblies for web developers that wish to use federated identity providers for establishing the caller's identity. Anyone leveraging the SignedHttpRequestprotocol or the SignedHttpRequestValidatoris vulnerable. Microsoft.IdentityModel trusts the jkuclaim.....
8.8CVSS
8.5AI Score
0.001EPSS
8CVSS
8.4AI Score
0.008EPSS
Azure uAMQP is a general purpose C library for AMQP 1.0. The UAMQP library is used by several clients to implement AMQP protocol communication. When clients using this library receive a crafted binary type data, an integer overflow or wraparound or memory safety issue can occur and may cause...
9.8CVSS
9.8AI Score
0.006EPSS
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algorithm as...
8.6CVSS
8.5AI Score
0.0005EPSS
6.5CVSS
7AI Score
0.001EPSS
9.6CVSS
8.2AI Score
0.001EPSS
7.3CVSS
7.6AI Score
0.001EPSS
4.7CVSS
5.4AI Score
0.001EPSS
Azure RTOS USBX is a USB host, device, and on-the-go (OTG) embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to memory buffer and pointer vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in...
9.8CVSS
9.9AI Score
0.033EPSS
Azure RTOS USBX is a USB host, device, and on-the-go (OTG) embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in...
9.8CVSS
9.8AI Score
0.012EPSS
Azure RTOS USBX is a USB host, device, and on-the-go (OTG) embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference and type confusion vulnerabilities in Azure RTOS USBX. The affected components include...
9.8CVSS
9.8AI Score
0.012EPSS
Azure RTOS USBX is a USB host, device, and on-the-go (OTG) embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to out of bounds write vulnerabilities in Azure RTOS USBX. The affected components include functions/processes in host and...
9.8CVSS
9.9AI Score
0.01EPSS
Azure RTOS ThreadX is an advanced real-time operating system (RTOS) designed specifically for deeply embedded applications. An attacker can cause arbitrary read and write due to vulnerability in parameter checking mechanism in Azure RTOS ThreadX, which may lead to privilege escalation. The...
9.8CVSS
9.4AI Score
0.003EPSS
Azure RTOS USBX is a USB host, device, and on-the-go (OTG) embedded stack, that is fully integrated with Azure RTOS ThreadX. An attacker can cause remote code execution due to expired pointer dereference vulnerabilities in Azure RTOS USBX. The affected components include components in host class,.....
9.8CVSS
9.8AI Score
0.012EPSS