2 matches found
Security Updates for Microsoft Azure Site Recovery (March 2022)
The Microsoft Azure Site Recovery installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
CVE-2022-24520
CVE-2022-24520 is an Azure Site Recovery remote code execution vulnerability affecting the VMware-to-Azure recovery scenario. Public sources corroborate an RCE impact with network access and no user interaction, and Microsoft’s advisories/updates indicate fixes have been released (MS22-5011122) a...