Lucene search
MicrosoftCVELIST:CVE-2022-30187HistoryJul 12, 2022 - 10:37 p.m.
CVE-2022-30187 Azure Storage Library Information Disclosure Vulnerability
2022-07-1222:37:25
microsoft
www.cve.org
10
azure storage
information disclosure
vulnerability
CVSS3
4.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C
AI Score
5.5
Confidence
High
EPSS
0
Percentile
10.2%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Azure Storage Blobs client library for .NET",
"cpes": [
"cpe:2.3:a:microsoft:azure_storage_blobs:*:*:*:*:*:.net:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "12.0.0",
"lessThan": "12.13.0",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Azure Storage Queues client library for .NET",
"cpes": [
"cpe:2.3:a:microsoft:azure_storage_queue:*:*:*:*:*:.net:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "12.0.0",
"lessThan": "12.13.0",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Azure Storage Blobs client library for Java",
"cpes": [
"cpe:2.3:a:microsoft:azure_storage_blobs:*:*:*:*:*:java:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "12.0.0",
"lessThan": "12.18.0",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Azure Storage Queues client library for Python",
"cpes": [
"cpe:2.3:a:microsoft:azure_storage_blobs:*:*:*:*:*:python:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "12.0.0",
"lessThan": "12.4.0",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Azure Storage Blobs client library for Python",
"cpes": [
"cpe:2.3:a:microsoft:azure_storage_blobs:*:*:*:*:*:python:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "12.0.0",
"lessThan": "12.13.0",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
kaspersky
kaspersky
KLA12585 OSI vulnerability in Microsoft Dynamics
2022-07-12 00:00:00
KLA12582 Multiple vulnerabilities in Microsoft Azure
2022-07-12 00:00:00
msrc
msrc
mscve
mscve
Azure Storage Library Information Disclosure Vulnerability
2022-07-12 07:00:00
vulnrichment
vulnrichment
CVE-2022-30187 Azure Storage Library Information Disclosure Vulnerability
2022-07-12 22:37:25
gitlab
gitlab
Exposure of Resource to Wrong Sphere
2022-07-13 00:00:00
Exposure of Resource to Wrong Sphere
2022-07-13 00:00:00
nessus
nessus
cve
cve
CVE-2022-30187
2022-07-12 23:15:10
ubuntucve
ubuntucve
CVE-2022-30187
2022-07-12 00:00:00
prion
prion
Information disclosure
2022-07-12 23:15:00
nvd
nvd
CVE-2022-30187
2022-07-12 23:15:10
github
github
Microsoft: CBC Padding Oracle in Azure Blob Storage Encryption Library
2022-07-13 00:00:39
osv
osv
Microsoft: CBC Padding Oracle in Azure Blob Storage Encryption Library
2022-07-13 00:00:39
rapid7blog
rapid7blog
Patch Tuesday - July 2022
2022-07-12 19:40:15
CVSS3
4.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C
AI Score
5.5
Confidence
High
EPSS
0
Percentile
10.2%
Related for CVELIST:CVE-2022-30187