27 matches found
EUVD-2019-1697
Malware in sbrugna...
EUVD-2025-14049
Malicious code in bioql PyPI...
CVE-2019-0962
An elevation of privilege vulnerability exists in Azure Automation "RunAs account" runbooks for users with contributor role, aka 'Azure Automation Elevation of Privilege Vulnerability'...
The vulnerability of the Azure Automation service, related to incorrect authorization, allows a perpetrator to increase their privileges.
The vulnerability of the Azure Automation service is related to incorrect authentication. Exploiting this vulnerability can allow a remote attacker to increase their privileges...
CVE-2025-29827
Improper Authorization in Azure Automation allows an authorized attacker to elevate privileges over a network...
CVE-2025-29827
Improper authorization in Azure Automation allows an authorized attacker to elevate privileges over a network...
CVE-2025-29827
CVE-2025-29827 — Azure Automation Elevation of Privilege : The Azure Automation service is affected by an improper authorization vulnerability that can allow an authenticated attacker to elevate privileges over the network. Public sources in the provided documents indicate updates/fixes have been...
CVE-2025-29827 Azure Automation Elevation of Privilege Vulnerability
...
CVE-2025-29827 Azure Automation Elevation of Privilege Vulnerability
...
Azure Automation Elevation of Privilege Vulnerability
Improper authorization in Azure Automation allows an authorized attacker to elevate privileges over a network...
Microsoft Azure Automation 授权问题漏洞
Microsoft Azure Automation is a cloud automation service from Microsoft Corporation USA. The product focuses on providing cloud-based automation and configuration services. An authorization issue vulnerability exists in Microsoft Azure Automation that stems from improper authorization and could...
PT-2025-20429 · Microsoft · Azure Automation
Name of the Vulnerable Software and Affected Versions: Azure Automation affected versions not specified Description: The issue is related to improper authorization in Azure Automation, allowing an authorized attacker to elevate privileges over a network. Recommendations: At the moment, there is n...
Microsoft Open Management Infrastructure Security Vulnerability
Microsoft Open Management Infrastructure is a free, open source Common Information Model CIM management server from Microsoft. A security vulnerability exists in Microsoft Open Management Infrastructure. An attacker could exploit this vulnerability to gain elevated privileges. The following...
Researchers Uncover Undetectable Crypto Mining Technique on Azure Automation
Cybersecurity researchers have developed what's the first fully undetectable cloud-based cryptocurrency miner leveraging the Microsoft Azure Automation service without racking up any charges. Cybersecurity company SafeBreach said it discovered three different methods to run the miner, including o...
Microsoft Azure 安全漏洞
Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Azure. The following products and versions are affected: Azure Automation State Configuration, DSC Extension, Azure...
Microsoft Azure 'AutoWarp' Bug Could Have Let Attackers Access Customers' Accounts
Details have been disclosed about a now-addressed critical vulnerability in Microsoft's Azure Automation service that could have permitted unauthorized access to other Azure customer accounts and take over control. "This attack could mean full control over resources and data belonging to the...
Disclosure of Vulnerability in Azure Automation Managed Identity Tokens
On December 10, 2021, Microsoft mitigated a vulnerability in the Azure Automation service. Azure Automation accounts that used Managed Identitiestokens for authorization and an Azure Sandbox for job runtime and execution were exposed. Microsoft has not detected evidence of misuse of tokens...
The vulnerabilities of the Azure Active Directory (AAD) identity management and protection platform, the Azure Automation service, the Azure Site Recovery disaster recovery tool, and the Azure Migrate data transfer service are related to authentication process flaws, allowing attackers to gain unauthorized access to protected information.
The vulnerabilities of the Azure Active Directory AAD identity management and protection platform, the Azure Automation service, the Azure Site Recovery disaster recovery tool, and the Azure Migrate data transfer service are related to authentication process flaws. Exploiting these vulnerabilitie...
KLA12348 OSI vulnerability in Microsoft Azure
An information disclosure vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2021-42306 Related products Microsoft-Active-Directory Microsoft-Azure CVE list CVE-2021-42306 unknown Solution Install...
Exploit for CVE-2021-38647
OMIGOD Proof on Concept Exploit for CVE-2021-38647 OMIGOD F...