4 matches found
CVE-2024-21329
Azure Connected Machine Agent Elevation of Privilege Vulnerability...
CVE-2024-21329
CVE-2024-21329 affects Microsoft Azure Connected Machine Agent. Connected docs identify an elevation-of-privilege issue in the Azure Connected Machine Agent (root cause described by PT-2024-1823 as a symbolic link tracking vulnerability). CVSS indicates local access with low attack complexity and...
KLA63957 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Azure Kubernetes Service...
Security Updates for Azure Connected Machine Agent (February 2024)
The Microsoft Azure Connected Machine Agent running on the remote host is prior to 1.38. It is, therefore affected by an elevation of privilege vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVE...