33 matches found
KLA90946 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Cloud Shell can be exploited remotely to gai...
Malicious code in cloud-shell-getting-started (npm)
The package cloud-shell-getting-started was found to contain malicious code...
Malicious code in cloud-shell-extension (npm)
The package cloud-shell-extension was found to contain malicious code...
MAL-2025-17170 Malicious code in cloud-shell-extension (npm)
The package cloud-shell-extension was found to contain malicious code...
MAL-2025-17171 Malicious code in cloud-shell-getting-started (npm)
The package cloud-shell-getting-started was found to contain malicious code...
Malicious code in theia-for-cloud-shell (npm)
The package theia-for-cloud-shell was found to contain malicious code...
MAL-2025-36783 Malicious code in theia-for-cloud-shell (npm)
The package theia-for-cloud-shell was found to contain malicious code...
New InsightCloudSec Compliance Pack for CIS AWS Benchmark 2.0.0
The Center for Internet Security CIS recently released version two of their AWS Benchmark. CIS AWS Benchmark 2.0.0 brings two new recommendations and eliminates one from the previous version. The update also includes some minor formatting changes to certain recommendation descriptions. In this...
EAST - Extensible Azure Security Tool - Documentation
Extensible Azure Security Tool Later referred as E.A.S.T is tool for assessing Azure and to some extent Azure AD security controls. Primary use case of EAST is Security data collection for evaluation in Azure Assessments. This information JSON content can then be used in various reporting tools,...
AutomatedLab - A Provisioning Solution And Framework That Lets You Deploy Complex Labs On HyperV And Azure With Simple PowerShell Scripts
AutomatedLab AL enables you to setup test and lab environments on Hyper-v or Azure with multiple products or just a single VM in a very short time. There are only two requirements you need to make sure: You need the DVD ISO images and a Hyper-V host or an Azure subscription. Requirements Apart fr...
$100K Paid Out for Google Cloud Shell Root Compromise
Google has awarded its inaugural annual top prize for the Google Cloud Platform GCP, for vulnerabilities found in the Google Cloud Shell. The find — a container escape that leads to host root access and the ability to use privileged containers — has earned $100,000 for Dutch researcher Wouter ter...
$100K Paid Out for Google Cloud Shell Root Compromise
Google has awarded its inaugural annual top prize for the Google Cloud Platform GCP, for vulnerabilities found in the Google Cloud Shell. The find — a container escape that leads to host root access and the ability to use privileged containers — has earned $100,000 for Dutch researcher Wouter ter...
PT-2019-2577 · Xterm.Js · Xterm.Js
Name of the Vulnerable Software and Affected Versions: xterm.js affected versions not specified Description: A remote code execution issue exists due to the mishandling of special characters by the xterm.js component. This can allow a remote attacker to execute arbitrary code. The vulnerability i...