330 matches found
CVE-2021-42300
Azure Sphere Tampering Vulnerability...
CVE-2021-41375
Azure Sphere Information Disclosure Vulnerability...
Cisco Talos finds 10 vulnerabilities in Azure Sphere’s Linux kernel, Security Monitor and Pluton
By Claudio Bozzato and Lilith --;. Following our previous engagements see blog posts 1, 2, 3 and 4 with Microsoft's Azure Sphere IoT platform, we decided to take another look at the device, without all the rush and commotion that normally entails a hacking challenge. Today, we’re... This is only...
CVE-2021-42300
CVE-2021-42300 corresponds to Microsoft Azure Sphere Tampering Vulnerability. Connected sources indicate Azure Sphere (and related Azure RTOS/FSLogix entries) are affected by a tampering issue arising from insufficient access control, enabling local attacker access. The CVSS:3.1 vector (AV:L/AC:L...
CVE-2021-42300 Azure Sphere Tampering Vulnerability
...
CVE-2021-41376 Azure Sphere Information Disclosure Vulnerability
...
CVE-2021-41375 Azure Sphere Information Disclosure Vulnerability
...
CVE-2021-41374 Azure Sphere Information Disclosure Vulnerability
...
CVE-2021-41374 Azure Sphere Information Disclosure Vulnerability
...
Microsoft Azure Sphere Data Forgery Issue Vulnerability
Microsoft Azure Sphere, a Microsoft appliance used to provide security in cloud environments, is vulnerable to a data forgery issue. The vulnerability stems from a network system or product that does not adequately verify the origin or authenticity of data. An attacker could use the falsified dat...
Microsoft Azure Sphere Input Validation Error Vulnerability
Microsoft Azure Sphere is an appliance used by Microsoft USA to provide security in cloud environments. Microsoft Azure Sphere is vulnerable to an input validation error. No details of the vulnerability are currently available...
Microsoft Azure Sphere Buffer Overflow Vulnerability
Microsoft Azure Sphere is an appliance used to provide security in cloud environments by Microsoft Corporation USA. No detailed vulnerability details are available at this time...
Microsoft Azure Sphere Information Disclosure Vulnerability (CNVD-2021-93635)
Microsoft Azure Sphere is a security vulnerability in Microsoft Azure Sphere, an appliance used by Microsoft to provide security in cloud environments. No details of the vulnerability are currently available...
Azure Sphere Information Disclosure Vulnerability
...
Azure Sphere Tampering Vulnerability
...
Microsoft Azure Sphere 数据伪造问题漏洞
Microsoft Azure Sphere, a Microsoft appliance used to provide security in cloud environments, is vulnerable to a data forgery issue. The vulnerability stems from a network system or product that does not adequately verify the origin or authenticity of data. An attacker could use the falsified dat...
PT-2021-5051 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to a lack of protection for service data in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to gain unauthorized access to...
Microsoft Azure Sphere 安全漏洞
Microsoft Azure Sphere is a security vulnerability in Microsoft Azure Sphere, an appliance used by Microsoft to provide security in cloud environments. No details of the vulnerability are currently available...
Vulnerabilities fixed in Microsoft Azure products
Microsoft has fixed vulnerabilities in Azure products. The vulnerabilities allow a malicious party to gain elevated permissions and to obtain sensitive data. Azure RTOS: |----------------|------|-------------------------------------| | CVE ID | CVSS | Impact |...
PT-2021-5085 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to insufficient access control in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to elevate their privileges. Recommendations:...