The vulnerability of the software for working with Azure Machine Learning algorithms lies in the lack of protection for operational data, which allows an attacker to gain unauthorized access to protected information.

The vulnerability of the software for working with Azure Machine Learning algorithms is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the software for working with Azure Machine Learning algorithms lies in the lack of protection for operational data, which allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the software for working with Azure Machine Learning algorithms is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

CVE-2023-28312

Azure Machine Learning Information Disclosure Vulnerability...

CVE-2023-28312

Azure Machine Learning Information Disclosure Vulnerability...

Information disclosure

Azure Machine Learning Information Disclosure Vulnerability...

CVE-2023-28312 Azure Machine Learning Information Disclosure Vulnerability

...

Azure Machine Learning Information Disclosure Vulnerability

...

Microsoft Azure Machine Learning 安全漏洞

Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Azure Machine Learning. No information about this vulnerability is available at this time, so stay tuned to CNNVD or...

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in the Azure components Service Connector and Machine Learning. A malicious party could exploit the vulnerabilities to bypass internal firewall rules, or to gain access to logging data. The malicious party must be authenticated with the appropriate...

PT-2023-2416 · Microsoft · Azure Machine Learning

Name of the Vulnerable Software and Affected Versions: Azure Machine Learning affected versions not specified Description: The issue is related to a lack of protection for service data in Azure Machine Learning, which could allow a remote attacker to gain unauthorized access to protected...

Remote file existence check vulnerability in `mlflow server` and `mlflow ui` CLIs

Impact Users of the MLflow Open Source Project who are hosting the MLflow Model Registry using the mlflow server or mlflow ui commands using an MLflow version older than MLflow 2.2.1 may be vulnerable to a remote file existence check exploit if they are not limiting who can query their server for...

GHSA-WP72-7HJ9-5265 Remote file existence check vulnerability in `mlflow server` and `mlflow ui` CLIs

Impact Users of the MLflow Open Source Project who are hosting the MLflow Model Registry using the mlflow server or mlflow ui commands using an MLflow version older than MLflow 2.2.1 may be vulnerable to a remote file existence check exploit if they are not limiting who can query their server for...

CVE-2023-23382

Azure Machine Learning Compute Instance Information Disclosure Vulnerability...

Information disclosure

Azure Machine Learning Compute Instance Information Disclosure Vulnerability...

CVE-2023-23382 Azure Machine Learning Compute Instance Information Disclosure Vulnerability

...

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in several components of Azure. For an overview of the vulnerabilities, see the following list. Azure App Service: |----------------|------|-------------------------------------| | CVE ID | CVSS | Impact |...

PT-2023-6855 · Microsoft · Azure Machine Learning

Name of the Vulnerable Software and Affected Versions: Azure Machine Learning affected versions not specified Description: The issue is related to a lack of protection for service data in Azure Machine Learning, which can allow a remote attacker to gain unauthorized access to protected informatio...

acuity (=6.18.0), acuitypro (=6.18.0) +81 more potentially affected by CVE-2022-25882 via onnx (>=0.2.0 <=1.12.0)

onnx PYPI version =0.2.0, =0.0.0, =0.0.157, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =1.44.0, =0.5.8, =0.1.0, =0.3.0 and more Source cves: CVE-2022-25882 Source advisory: OSV:PYSEC-2023-38...

Microsoft Azure Services Flaws Could've Exposed Cloud Resources to Unauthorized Access

Four different Microsoft Azure services have been found vulnerable to server-side request forgery SSRF attacks that could be exploited to gain unauthorized access to cloud resources. The security issues, which were discovered by Orca between October 8, 2022 and December 2, 2022 in Azure API...

Microsoft Azure Services Flaws Could've Exposed Cloud Resources to Unauthorized Access

Four different Microsoft Azure services have been found vulnerable to server-side request forgery SSRF attacks that could be exploited to gain unauthorized access to cloud resources. The security issues, which were discovered by Orca between October 8, 2022 and December 2, 2022 in Azure API...