CVE-2025-65037

Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...

CVE-2025-65037

Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...

CVE-2025-65037

Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...

CVE-2025-65037 Azure Container Apps Remote Code Execution Vulnerability

...

CVE-2025-65037

CVE-2025-65037 affects Azure Container Apps. The root cause is improper control of code generation, enabling an attacker to perform remote code execution over the network via a code-injection vulnerability in the container platform. Impact is described as arbitrary code execution with high confid...

EUVD-2025-204414

Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...

CVE-2025-65037 Azure Container Apps Remote Code Execution Vulnerability

...

Azure Container Apps Remote Code Execution Vulnerability

Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...

Microsoft Azure Container Apps 代码注入漏洞

Microsoft Azure Container Apps is a serverless container platform from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Azure Container Apps that stems from improper code generation controls and could lead to an unauthorized attacker executing code over the network...

PT-2025-52360

Name of the Vulnerable Software and Affected Versions Azure Container Apps affected versions not specified Description An improper control of generation of code issue, also known as 'code injection', exists in Azure Container Apps. This allows an unauthorized attacker to execute code over a...

Malicious code in vscode-azurecontainerapps (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e5ad54ec265645c2e7358384082a1b1f2385a1caa652b65c359b13681a211b30 Any computer that has this package installed or running should be considered...

Wiz Expands Runtime Protection to Serverless Containers

Wiz extends its cloud-native runtime sensor to secure serverless containers, providing deep visibility, blocking, and hunting capabilities for AWS Fargate and Azure Container Apps...

Expanding Wiz Runtime Sensor Coverage - Now Blocking Threats and Protecting Serverless Containers at Runtime

Wiz extends its cloud-native runtime sensor to secure serverless containers, providing deep visibility, blocking, and hunting capabilities for AWS Fargate and Azure Container Apps...