Lucene search
Veracode Vulnerability DatabaseVERACODE:37686HistoryOct 26, 2022 - 4:18 a.m.
Arbitrary Code Injection
2022-10-2604:18:56
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
arbitrary code injection
azure_cli
windows
input validations
malicious code
vulnerability
0.004 Low
EPSS
Percentile
75.2%
azure_cli is vulnerable to arbitrary code injection. The vulnerability exist in azure_cli only when running on windows, due to incorrect input validations during the submission of values containing & or | symbols which allows an attacker to inject and execute malicious code into the system.
Related
prion
prion
Code injection
2022-10-25 17:15:00
cve
cve
CVE-2022-39327
2022-10-25 17:15:56
debiancve
debiancve
CVE-2022-39327
2022-10-25 17:15:56
mscve
mscve
osv
osv
CVE-2022-39327
2022-10-25 17:15:56
BIT-azure-cli-2022-39327
2024-03-06 10:50:38
Improper Control of Generation of Code ('Code Injection') in Azure CLI
2022-10-25 19:56:51
nvd
nvd
CVE-2022-39327
2022-10-25 17:15:56
github
github
Improper Control of Generation of Code ('Code Injection') in Azure CLI
2022-10-25 19:56:51
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2022-39327
2022-10-25 00:00:00
wallarmlab
wallarmlab
Azure CLI Code Injection CVE-2022-39327 hits 9.8/10 CVSS score
2022-10-29 07:51:10
kaspersky
kaspersky
KLA20046 Multiple vulnerabilities in Microsoft Azure
2022-11-08 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - November 2022
2022-11-08 20:02:57