49 matches found
KLA20004 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Arc-enabled Kubernetes cluster Connect can be...
Microsoft Azure Kubernetes 安全漏洞
Microsoft Azure Kubernetes is a fully managed Kubernetes service from Microsoft Corporation USA. Offers serverless Kubernetes, a consolidated Continuous Integration and Continuous Delivery CI/CD experience, along with enterprise-grade security and governance. Unify development and operations team...
CVE-2022-37968
CVE-2022-37968 affects Azure Arc‑enabled Kubernetes cluster Connect. An unauthenticated attacker could elevate privileges, potentially obtaining administrative control of the Kubernetes cluster; Azure Stack Edge devices are also affected via Arc. The CVSSv3.1 score is 10.0 (Network, Low/Zero inte...
CVE-2022-38007
Azure Guest Configuration and Azure Arc-enabled servers Elevation of Privilege Vulnerability...
CVE-2022-38007
Azure Guest Configuration and Azure Arc-enabled servers Elevation of Privilege Vulnerability...
CVE-2022-38007 Azure Guest Configuration and Azure Arc-enabled servers Elevation of Privilege Vulnerability
...
CVE-2022-38007
CVE-2022-38007 affects Azure Guest Configuration and Azure Arc-enabled servers. The vulnerability enables local elevation of privilege by potentially replacing Microsoft-shipped code used by the Guest Configuration daemon (and related GC Arc Service/Extension daemons) and executing it with higher...
PT-2022-5825 · Microsoft · Azure Arc +1
Name of the Vulnerable Software and Affected Versions: Azure Guest Configuration and Azure Arc-enabled servers affected versions not specified Description: The issue is related to insufficient access controls in the Azure Guest Configuration component, which is part of the Azure Policy service an...
KLA12392 RCE vulnerability in Microsoft Azure
Remote code execution vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-44228 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...