Lucene search
MicrosoftCVELIST:CVE-2021-28458HistoryApr 13, 2021 - 7:33 p.m.
CVE-2021-28458 Azure ms-rest-nodeauth Library Elevation of Privilege Vulnerability
2021-04-1319:33:37
microsoft
www.cve.org
6
cve-2021-28458
azure
ms-rest-nodeauth
elevation of privilege
vulnerability
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
AI Score
8
Confidence
High
EPSS
0
Percentile
9.5%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "@azure/ms-rest-nodeauth",
"cpes": [
"cpe:2.3:a:microsoft:ms-rest-nodeauth:-:*:*:*:*:node.js:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "0.8.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
github
github
Improper Privilege Management in Azure ms-rest-nodeauth
2022-05-24 17:47:26
nvd
nvd
CVE-2021-28458
2021-04-13 20:15:20
osv
osv
Improper Privilege Management in Azure ms-rest-nodeauth
2022-05-24 17:47:26
huntr
huntr
Command Injection in azure/ms-rest-nodeauth
2021-03-09 03:18:30
mscve
mscve
Azure ms-rest-nodeauth Library Elevation of Privilege Vulnerability
2021-04-13 07:00:00
cve
cve
CVE-2021-28458
2021-04-13 20:15:20
prion
prion
Privilege escalation
2021-04-13 20:15:00
kaspersky
kaspersky
KLA12140 Multiple vulnerabilities in Microsoft Azure
2021-04-13 00:00:00
thn
thn
NSA Discovers New Vulnerabilities Affecting Microsoft Exchange Servers
2021-04-14 04:58:00
rapid7blog
rapid7blog
Patch Tuesday - April 2021
2021-04-13 17:37:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
AI Score
8
Confidence
High
EPSS
0
Percentile
9.5%
Related for CVELIST:CVE-2021-28458