CVE-2024-38195

2024-08-1318:15:28

CWE-284

microsoft

web.nvd.nist.gov

azure

cyclecloud

remote code execution

vulnerability

cve-2024-38195

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

18.4%

JSON

Azure CycleCloud Remote Code Execution Vulnerability

Affected configurations

Nvd

Vulners

Node

microsoftazure_cyclecloudRange8.0.0–8.6.3

VendorProductVersionCPE
microsoftazure_cyclecloud*cpe:2.3:a:microsoft:azure_cyclecloud:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	azure_cyclecloud	*	cpe:2.3:a:microsoft:azure_cyclecloud::::::::

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.2.0",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.2.0:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.2.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.0.0",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.0.0:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.0.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.6.0",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.6.0:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.6.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.0.1",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.0.1:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.0.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.0.2",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.0.2:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.0.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.1.0",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.1.0:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.1.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.1.1",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.1.1:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.1.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.2.2",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.2.2:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.2.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.2.1",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.2.1:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.2.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.3.0",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.3.0:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.3.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.4.0",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.4.0:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.4.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.4.1",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.4.1:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.4.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.4.2",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.4.2:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.4.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud 8.5.0",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.5.0:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.5.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Azure CycleCloud",
    "cpes": [
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.6.2:*:*:*:*:*:*:*",
      "cpe:2.3:a:microsoft:azure_cyclecloud:8.6.1:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "8.6.0",
        "lessThan": "8.6.3",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]