Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.1 views

EUVD-2025-9061

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00594EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/03 1:37 a.m.20 views

CVE-2025-21384

An authenticated attacker can exploit an Server-Side Request Forgery SSRF vulnerability in Microsoft Azure Health Bot to elevate privileges over a network...

8.3CVSS7AI score0.00594EPSS
Exploits0References3
NVD
NVD
added 2025/04/01 1:15 a.m.22 views

CVE-2025-21384

An authenticated attacker can exploit an Server-Side Request Forgery SSRF vulnerability in Microsoft Azure Health Bot to elevate privileges over a network...

8.8CVSS0.00594EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 12:40 a.m.123 views

CVE-2025-21384

CVE-2025-21384 corresponds to an authenticated SSRF (Server-Side Request Forgery) vulnerability in Microsoft Azure Health Bot that can lead to privilege elevation over a network. The advisory notes an authenticated attacker can exploit SSRF to escalate privileges; the CVSS v3.1 base score is 8.8 ...

8.8CVSS8.1AI score0.00594EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/04/01 12:40 a.m.20 views

CVE-2025-21384 Azure Health Bot Elevation of Privilege Vulnerability

...

8.3CVSS0.00594EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 12:40 a.m.9 views

CVE-2025-21384 Azure Health Bot Elevation of Privilege Vulnerability

...

8.3CVSS7.2AI score0.00594EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/03/31 7:0 a.m.30 views

Azure Health Bot Elevation of Privilege Vulnerability

An authenticated attacker can exploit an Server-Side Request Forgery SSRF vulnerability in Microsoft Azure Health Bot to elevate privileges over a network...

8.8CVSS6.8AI score0.00594EPSS
Exploits0
CNNVD
CNNVD
added 2025/03/31 12:0 a.m.3 views

Microsoft Azure Health Bot 安全漏洞

Microsoft Azure Health Bot is an Artificial Intelligence-based service from Microsoft Corporation USA designed to provide automated chatbot solutions for healthcare. A security vulnerability exists in Microsoft Azure Health Bot. An attacker exploiting the vulnerability can elevate privileges...

8.8CVSS6.5AI score0.00594EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2025/03/31 12:0 a.m.10 views

KLA82171 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Playwright can be exploited remotely to gain...

9.8CVSS7AI score0.00594EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/03/31 12:0 a.m.5 views

PT-2025-14011 · Microsoft · Sharepoint Server +1

Name of the Vulnerable Software and Affected Versions: Microsoft Azure Health Bot affected versions not specified Microsoft SharePoint Server affected versions not specified Description: The issue is related to a Server-Side Request Forgery SSRF vulnerability. An authenticated attacker can exploi...

8.8CVSS5.9AI score0.00594EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2024/08/26 12:0 a.m.5 views

The vulnerability of the Azure Health Bot, a tool for creating and deploying intelligent chatbots in the healthcare sector, lies in the insufficient verification of incoming requests. This allows attackers to increase their privileges.

The vulnerability of the tool for creating and deploying intelligent chatbots in the healthcare domain, Azure Health Bot, is related to insufficient verification of incoming requests. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

9.4CVSS5.9AI score0.01833EPSS
Exploits0References2
NCSC
NCSC
added 2024/08/13 6:20 p.m.7 views

Vulnerabilities fixed in Microsoft Azure components

Microsoft has fixed vulnerabilities in several Azure components. A malicious party can exploit the vulnerabilities to grant themselves elevated privileges or impersonate another user. For successful abuse, the malicious party needs prior access to the vulnerable environment, or the malicious part...

9.3CVSS6.7AI score0.01833EPSS
Exploits0
NVD
NVD
added 2024/08/13 6:15 p.m.44 views

CVE-2024-38109

An authenticated attacker can exploit an Server-Side Request Forgery SSRF vulnerability in Microsoft Azure Health Bot to elevate privileges over a network...

9.1CVSS0.01833EPSS
Exploits0References1
CVE
CVE
added 2024/08/13 5:30 p.m.118 views

CVE-2024-38109

CVE-2024-38109 – Azure Health Bot Elevation of Privilege is an authenticated SSRF vulnerability in Microsoft Azure Health Bot that can allow an attacker to elevate privileges over a network. The vulnerability is documented in Microsoft’s advisory (CVE-2024-38109) and is referenced in multiple fee...

9.1CVSS9.1AI score0.01833EPSS
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2024/08/13 1:0 p.m.43 views

Researchers Uncover Vulnerabilities in AI-Powered Azure Health Bot Service

Cybersecurity researchers have discovered two security flaws in Microsoft's Azure Health Bot Service that, if exploited, could permit a malicious actor to achieve lateral movement within customer environments and access sensitive patient data. The critical issues, now patched by Microsoft, could...

9.1CVSS6.9AI score0.16084EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/08/13 7:0 a.m.22 views

Azure Health Bot Elevation of Privilege Vulnerability

An authenticated attacker can exploit an Server-Side Request Forgery SSRF vulnerability in Microsoft Azure Health Bot to elevate privileges over a network...

9.1CVSS6.8AI score0.01833EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.8 views

PT-2024-5743

Name of the Vulnerable Software and Affected Versions Microsoft Azure Health Bot affected versions not specified Description The issue is related to insufficient validation of incoming requests in Microsoft Azure Health Bot, which can be exploited by an authenticated attacker to elevate privilege...

9.4CVSS6AI score0.01833EPSS
Exploits0References15
Rows per page
Query Builder