15 matches found
CVE-2025-65037
Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...
CVE-2025-65037
Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...
EUVD-2025-204414
Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...
CVE-2025-65037
Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...
CVE-2025-65037 Azure Container Apps Remote Code Execution Vulnerability
...
CVE-2025-65037 Azure Container Apps Remote Code Execution Vulnerability
...
CVE-2025-65037
CVE-2025-65037 affects Azure Container Apps. The root cause is improper control of code generation, enabling an attacker to perform remote code execution over the network via a code-injection vulnerability in the container platform. Impact is described as arbitrary code execution with high confid...
Azure Container Apps Remote Code Execution Vulnerability
Improper control of generation of code 'code injection' in Azure Container Apps allows an unauthorized attacker to execute code over a network...
Microsoft Azure Container Apps 代码注入漏洞
Microsoft Azure Container Apps is a serverless container platform from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Azure Container Apps that stems from improper code generation controls and could lead to an unauthorized attacker executing code over the network...
KLA90827 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Azure Cosmos DB can...
PT-2025-52360
Name of the Vulnerable Software and Affected Versions Azure Container Apps affected versions not specified Description An improper control of generation of code issue, also known as 'code injection', exists in Azure Container Apps. This allows an unauthorized attacker to execute code over a...
Malicious code in vscode-azurecontainerapps (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e5ad54ec265645c2e7358384082a1b1f2385a1caa652b65c359b13681a211b30 Any computer that has this package installed or running should be considered...
Expanding Wiz Runtime Sensor Coverage - Now Blocking Threats and Protecting Serverless Containers at Runtime
Wiz extends its cloud-native runtime sensor to secure serverless containers, providing deep visibility, blocking, and hunting capabilities for AWS Fargate and Azure Container Apps...
Wiz Expands Runtime Protection to Serverless Containers
Wiz extends its cloud-native runtime sensor to secure serverless containers, providing deep visibility, blocking, and hunting capabilities for AWS Fargate and Azure Container Apps...
CVE-2018-1197
In Windows Stemcells versions prior to 1200.14, apps running inside containers in Windows on Google Cloud Platform are able to access the metadata endpoint. A malicious developer could use this access to gain privileged credentials...