102 matches found
CVE-2026-58279
Missing authorization in Azure CycleCloud allows an authorized attacker to elevate privileges over a network...
CVE-2026-57969
Missing authentication for critical function in Azure CycleCloud allows an authorized attacker to elevate privileges over a network...
CVE-2026-58279
CVE-2026-58279 affects Azure CycleCloud. The issue is missing authorization that could allow an authorized attacker to elevate privileges over a network, with integrity impact high and CVSS v3.1 base score 6.5. The attack vector is network; privileges required are low and user interaction is none...
CVE-2026-58279 Azure CycleCloud Elevation of Privilege Vulnerability
...
CVE-2026-57969
Technical details (affected versions, root cause, exploit vectors) are not publicly available in the provided documents. Monitor for updates from official sources and CVE records.
CVE-2026-57969 Azure CycleCloud Elevation of Privilege Vulnerability
...
Azure CycleCloud Elevation of Privilege Vulnerability
Missing authentication for critical function in Azure CycleCloud allows an authorized attacker to elevate privileges over a network...
PT-2026-58270
Name of the Vulnerable Software and Affected Versions Azure CycleCloud versions prior to 8.9.1-3806 Description Missing authorization allows an authorized attacker to elevate privileges over a network. Recommendations Upgrade to build 8.9.1-3806...
EUVD-2021-23519
Malware in sbrugna...
EUVD-2021-20439
Malware in sbrugna...
EUVD-2024-26964
Malicious code in bioql PyPI...
EUVD-2022-44329
Malicious code in bioql PyPI...
EUVD-2024-37163
Malicious code in bioql PyPI...
EUVD-2024-40353
Malicious code in bioql PyPI...
EUVD-2024-40738
Malicious code in bioql PyPI...
The vulnerability of the Azure CycleCloud tool for organizing and managing high-performance computing environments, related to deficiencies in the authentication process, allows a perpetrator to execute arbitrary code.
The vulnerability of the Azure CycleCloud tool for organizing and managing high-performance computing environments is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
Security Updates for Azure CycleCloud (November 2024)
The Azure CycleCloud product is missing security updates. It is, therefore, affected by the following vulnerability: - A remote code execution vulnerability exists due to a disclosure of the storage credentials. An authenticated, remote attacker can exploit this to bypass authentication and execu...
November Patch Tuesday release contains three critical remote code execution vulnerabilities
The Patch Tuesday for November of 2024 includes 89 vulnerabilities, including four that Microsoft marked as "critical." The remaining vulnerabilities listed are classified as "important." Microsoft assessed that exploitation of the four "critical" vulnerabilities is "less likely." CVE-2024-43639 ...
Vulnerabilities fixed in Microsoft Azure
Microsoft has fixed vulnerabilities in several Azure components. A malicious person could exploit the vulnerabilities to grant themselves elevated privileges within the vulnerable components. The most serious vulnerability is in CycleCloud and has been assigned attribute CVE-2024-43602. CycleClou...
CVE-2024-43602
Azure CycleCloud Remote Code Execution Vulnerability...