27 matches found
EUVD-2026-10586
Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally...
EUVD-2025-24276
Malicious code in bioql PyPI...
EUVD-2025-24365
Malicious code in bioql PyPI...
EUVD-2024-19015
Malicious code in bioql PyPI...
CVE-2025-49707
Improper access control in Azure Virtual Machines allows an authorized attacker to perform spoofing locally...
CVE-2025-53781
Exposure of sensitive information to an unauthorized actor in Azure Virtual Machines allows an authorized attacker to disclose information over a network...
Vulnerabilities fixed in Azure products
Microsoft has fixed vulnerabilities in Azure products. The vulnerabilities are related to improper access control mechanisms, allowing authorized attackers to perform local spoofing attacks, obtain elevated privileges, reveal sensitive information and compromise the integrity of systems. This can...
CVE-2025-53781
Exposure of sensitive information to an unauthorized actor in Azure Virtual Machines allows an authorized attacker to disclose information over a network...
CVE-2025-49707
Improper access control in Azure Virtual Machines allows an authorized attacker to perform spoofing locally...
CVE-2025-49707 Azure Virtual Machines Spoofing Vulnerability
...
CVE-2025-49707
CVE-2025-49707 describes an improper access control in Azure Virtual Machines that could allow an authorized attacker to perform spoofing locally. The initial description confirms the vulnerability in Azure VMs, with connected sources noting Microsoft has released fixes for related Azure vulnerab...
CVE-2025-49707 Azure Virtual Machines Spoofing Vulnerability
...
CVE-2025-53781 Azure Virtual Machines Information Disclosure Vulnerability
...
CVE-2025-53781 Azure Virtual Machines Information Disclosure Vulnerability
...
Azure Virtual Machines Information Disclosure Vulnerability
Exposure of sensitive information to an unauthorized actor in Azure Virtual Machines allows an authorized attacker to disclose information over a network...
Azure Virtual Machines Spoofing Vulnerability
Improper access control in Azure Virtual Machines allows an authorized attacker to perform spoofing locally...
KLA86583 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Azure File Sync ca...
PT-2025-32856 · Microsoft · Azure Virtual Machine
Name of the Vulnerable Software and Affected Versions: Azure Virtual Machines affected versions not specified Description: An issue exists in Azure Virtual Machines that allows an authorized attacker to disclose sensitive information over a network to an unauthorized actor. Recommendations: At th...
July 13, 2025—KB5064489 (OS Build 26100.4656) Out-of-band
July 13, 2025—KB5064489 OS Build 26100.4656 Out-of-band Windows Secure Boot certificate expiration Important: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. This might affect the ability of certain personal and business devices to boot securely if n...
CVE-2024-21302
Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this...