Kaspersky LabKLA12258KLA12258 Multiple vulnerabilities in Microsoft Azure
4.9 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:M/Au:S/C:P/I:P/A:P
7.7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.5%
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, gain privileges, cause denial of service.
Below is a complete list of vulnerabilities:
- A security bypass Microsoft Azure can be exploited remotely to bypass security restrictions.
- An information disclosure vulnerability in Azure Sphere can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in Azure Sphere can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Azure CycleCloud can be exploited remotely to gain privileges.
- A denial of service vulnerability in Azure Sphere can be exploited remotely to cause denial of service.
Original advisories
Related products
CVE list
CVE-2021-36949 unknown
CVE-2021-26428 unknown
CVE-2021-26429 unknown
CVE-2021-36943 unknown
CVE-2021-33762 unknown
CVE-2021-26430 unknown
Solution
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Impacts
- OSI
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
- DoS
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
- SB
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
- PE
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Affected Products
- Microsoft Azure Active Directory Connect 2.0.X.YAzure Active Directory Connect Provisioning AgentAzure SphereAzure CycleCloud 8.2.0
References
nvd.nist.gov/vuln/detail/CVE-2021-26428
nvd.nist.gov/vuln/detail/CVE-2021-26429
nvd.nist.gov/vuln/detail/CVE-2021-26430
nvd.nist.gov/vuln/detail/CVE-2021-33762
nvd.nist.gov/vuln/detail/CVE-2021-36943
nvd.nist.gov/vuln/detail/CVE-2021-36949
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Active-Directory/
threats.kaspersky.com/en/product/Microsoft-Azure/
Related
4.9 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:M/Au:S/C:P/I:P/A:P
7.7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
31.5%