6 matches found
GitHub: CVE-2022-39327 Improper Control of Generation of Code ('Code Injection') in Azure CLI
...
Vulnerabilities fixed in Microsoft Azure
Vulnerabilities have been fixed in Microsoft Azure. The vulnerabilities allow a malicious party to obtain elevated privileges obtain or to execute arbitrary code under the privileges of the user. The vulnerabilities marked CVE-2022-3602 and CVE-2022-3786 are located in OpenSSL and were previously...
azkm (>=0.1.0 <=0.2.71), azure-knowledgemining-cli (=0.1.0) +3 more potentially affected by CVE-2022-39327 via azure-cli (>=2.0.76 <=2.29.2)
azure-cli PYPI version =2.0.76, =0.1.0, =0.3.1, =0.1.10, =1.0.19 Source cves: CVE-2022-39327 Source advisory: OSV:GHSA-47XC-9RR2-Q7P4...
CVE-2022-39327 Improper Control of Generation of Code ('Code Injection') in Azure CLI
Azure CLI is the command-line interface for Microsoft Azure. In versions previous to 2.40.0, Azure CLI contains a vulnerability for potential code injection. Critical scenarios are where a hosting machine runs an Azure CLI command where parameter values have been provided by an external source. T...
CVE-2022-39327
Azure CLI (versions
CVE-2022-39327 Improper Control of Generation of Code ('Code Injection') in Azure CLI
Azure CLI is the command-line interface for Microsoft Azure. In versions previous to 2.40.0, Azure CLI contains a vulnerability for potential code injection. Critical scenarios are where a hosting machine runs an Azure CLI command where parameter values have been provided by an external source. T...