CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Azure CycleCloud product is missing security updates. It is, therefore, affected by the following vulnerability: - A remote code execution vulnerability exists due to a disclosure of the storage credentials. An authenticated, remote attacker can exploit this to bypass authentication and execu...

9.9CVSS9.7AI score0.0059EPSS

Exploits0References3

Talos Blog•added 2024/11/12 11:11 p.m.•27 views

November Patch Tuesday release contains three critical remote code execution vulnerabilities

The Patch Tuesday for November of 2024 includes 89 vulnerabilities, including four that Microsoft marked as "critical." The remaining vulnerabilities listed are classified as "important." Microsoft assessed that exploitation of the four "critical" vulnerabilities is "less likely." CVE-2024-43639 ...

9.9CVSS10AI score0.90313EPSS

Exploits3

NCSC•added 2024/11/12 6:54 p.m.•3 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in several Azure components. A malicious person could exploit the vulnerabilities to grant themselves elevated privileges within the vulnerable components. The most serious vulnerability is in CycleCloud and has been assigned attribute CVE-2024-43602. CycleClou...

9.9CVSS9.1AI score0.02469EPSS

Exploits0

NVD•added 2024/11/12 6:15 p.m.•14 views

CVE-2024-43602

Azure CycleCloud Remote Code Execution Vulnerability...

9.9CVSS0.0059EPSS

Exploits0References1

OSV•added 2024/11/12 6:15 p.m.•0 views

CVE-2024-43602

Azure CycleCloud Remote Code Execution Vulnerability...

9.9CVSS5.9AI score0.0059EPSS

Exploits0References1

Cvelist•added 2024/11/12 5:53 p.m.•21 views

CVE-2024-43602 Azure CycleCloud Remote Code Execution Vulnerability

...

9.9CVSS0.0059EPSS

Exploits0References1

Vulnrichment•added 2024/11/12 5:53 p.m.•17 views

CVE-2024-43602 Azure CycleCloud Remote Code Execution Vulnerability

...

9.9CVSS6.9AI score0.0059EPSS

Exploits0References1

CVE•added 2024/11/12 5:53 p.m.•66 views

CVE-2024-43602

CVE-2024-43602 (Azure CycleCloud Remote Code Execution Vulnerability) affects Azure CycleCloud; authenticated attackers can exploit a storage-credential disclosure to execute arbitrary code on a target node. The issue is tied to CycleCloud’s configuration handling and can lead to remote code exec...

9.9CVSS9.7AI score0.0059EPSS

Exploits0References1Affected Software1

Microsoft CVE•added 2024/11/12 8:0 a.m.•16 views

Azure CycleCloud Remote Code Execution Vulnerability

...

9.9CVSS7.1AI score0.0059EPSS

Exploits0

Kaspersky•added 2024/11/12 12:0 a.m.•15 views

KLA77104 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Database for PostgreSQL Flexible Server Extension...

9.9CVSS10AI score0.02469EPSS

Exploits0References6

CNNVD•added 2024/11/12 12:0 a.m.•2 views

Microsoft Azure CycleCloud 授权问题漏洞

Microsoft Azure CycleCloud is a suite of enterprise-friendly tools from Microsoft Corporation USA for orchestrating and managing high-performance computing HPC environments on Azure. A security vulnerability exists in Microsoft Azure CycleCloud. An attacker exploiting this vulnerability could...

9.9CVSS8.8AI score0.0059EPSS

Exploits0References2

Tenable Nessus•added 2024/09/13 12:0 a.m.•25 views

Security Updates for Azure CycleCloud (September 2024)

8.8CVSS6.9AI score0.00526EPSS

Exploits0References3

OSV•added 2024/09/10 5:15 p.m.•0 views

CVE-2024-43469

Azure CycleCloud Remote Code Execution Vulnerability...

8.8CVSS5.9AI score0.00526EPSS

Exploits0References1

Rows per page