Lucene search
+L

50 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-19041

Malicious code in bioql PyPI...

7.3CVSS7.9AI score0.01088EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/12 12:0 a.m.3 views

Security Updates for Azure Connected Machine Agent < 1.49

The Microsoft Azure Connected Machine Agent installation on the remote host is missing security updates. It is, therefore, affected by an elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. Note that Nessus has not tested for this issue but has instead...

7.8CVSS5.6AI score0.00319EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/09 5:1 p.m.13 views

CVE-2025-49692 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

7.8CVSS0.00319EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 5:1 p.m.49 views

CVE-2025-49692

CVE-2025-49692 describes an elevation of privilege vulnerability in the Azure Connected Machine Agent (Azure Windows Virtual Machine Agent). The issue is due to improper access control, allowing an authorized attacker with local access and low user interaction to gain total impact (high confident...

7.8CVSS6.4AI score0.00319EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/09 5:1 p.m.2 views

CVE-2025-55316 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

7.8CVSS6.5AI score0.00333EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/09 12:0 a.m.5 views

Microsoft Azure Connected Machine Agent 安全漏洞

Microsoft Azure Connected Machine Agent is a U.S.-based Microsoft Corporation's Microsoft ability to manage Windows and Linux computers hosted outside of Azure on a corporate network or other cloud provider. A security vulnerability exists in Microsoft Azure Connected Machine Agent. An attacker...

7.8CVSS6.4AI score0.00333EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2025/09/09 12:0 a.m.12 views

KLA87441 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Connected Machine...

9.8CVSS9.2AI score0.01923EPSS
Exploits0References4
NCSC
NCSC
added 2024/08/13 6:20 p.m.9 views

Vulnerabilities fixed in Microsoft Azure components

Microsoft has fixed vulnerabilities in several Azure components. A malicious party can exploit the vulnerabilities to grant themselves elevated privileges or impersonate another user. For successful abuse, the malicious party needs prior access to the vulnerable environment, or the malicious part...

9.3CVSS6.7AI score0.01833EPSS
Exploits0
NVD
NVD
added 2024/08/13 6:15 p.m.33 views

CVE-2024-38162

Azure Connected Machine Agent Elevation of Privilege Vulnerability...

7.8CVSS0.00513EPSS
Exploits0References1
OSV
OSV
added 2024/08/13 6:15 p.m.5 views

CVE-2024-38162

Azure Connected Machine Agent Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.00513EPSS
Exploits0References1
OSV
OSV
added 2024/08/13 6:15 p.m.6 views

CVE-2024-38098

Azure Connected Machine Agent Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.00632EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/13 5:29 p.m.32 views

CVE-2024-38098 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

7.8CVSS7.7AI score0.00632EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.6 views

Microsoft Azure Connected Machine Agent 访问控制错误漏洞

Microsoft Azure Connected Machine Agent is a U.S. Microsoft Corporation's ability to manage Windows and Linux computers hosted outside of Azure on a corporate network or other cloud provider. An access control error vulnerability exists in Microsoft Azure Connected Machine Agent. An attacker coul...

7.8CVSS6.4AI score0.00513EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.7 views

Microsoft Azure Connected Machine Agent 后置链接漏洞

Microsoft Azure Connected Machine Agent is a U.S.-based Microsoft company's ability to manage Windows and Linux computers hosted outside of Azure on a corporate network or other cloud provider. A backlink vulnerability exists in Microsoft Azure Connected Machine Agent. An attacker could exploit t...

7.8CVSS6.4AI score0.00632EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/13 12:0 a.m.30 views

Security Updates for Azure Connected Machine Agent (August 2024)

The Microsoft Azure Connected Machine Agent running on the remote host is prior to 1.44. It is, therefore affected by an elevation of privilege vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVE...

7.8CVSS5.5AI score0.00513EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/02/27 12:0 a.m.9 views

The vulnerability of the Azure Connected Machine Agent, a software tool for managing servers and virtual machines, relates to the tracking of symbolic links. This vulnerability allows an attacker to escalate their privileges.

The vulnerability of the Azure Connected Machine Agent, a software tool for managing servers and virtual machines, is related to the tracking of symbolic links. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.3CVSS7.3AI score0.01088EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/02/13 6:15 p.m.34 views

CVE-2024-21329

Azure Connected Machine Agent Elevation of Privilege Vulnerability...

7.3CVSS7.3AI score0.01088EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/13 6:2 p.m.32 views

CVE-2024-21329 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

7.3CVSS6.8AI score0.01088EPSS
Exploits0References1
CVE
CVE
added 2024/02/13 6:2 p.m.213 views

CVE-2024-21329

CVE-2024-21329 affects Microsoft Azure Connected Machine Agent. Connected docs identify an elevation-of-privilege issue in the Azure Connected Machine Agent (root cause described by PT-2024-1823 as a symbolic link tracking vulnerability). CVSS indicates local access with low attack complexity and...

7.3CVSS7.6AI score0.01088EPSS
Exploits0References1Affected Software1
NCSC
NCSC
added 2024/02/13 12:0 a.m.8 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in several Azure components. A malicious party could exploit the vulnerabilities to perform attacks that could result in the following categories of damage: Remote code execution Administrator/Root rights Remote code execution User rights Spoofing Increased use...

9.8CVSS7.2AI score0.01463EPSS
Exploits0
Rows per page
Query Builder