Microsoft Azure Event Grid System Access Control Error Vulnerability

Microsoft Azure Event Grid System is a fully managed event routing service system from Microsoft Corporation, USA. The Microsoft Azure Event Grid System is vulnerable to an access control error vulnerability that stems from improper access control and could lead to elevation of privilege. An...

CVE-2025-59273

Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges over a network...

EUVD-2025-35745

Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges over a network...

CVE-2025-59273

Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges over a network...

CVE-2025-59273

Azure Event Grid System Elevation of Privilege vulnerability (CVE-2025-59273) arises from improper access control, enabling a network-based, unauthenticated attacker to elevate privileges. Affected component: Azure Event Grid System in Microsoft Azure; root cause: access control misconfiguration ...

CVE-2025-59273 Azure Event Grid System Elevation of Privilege Vulnerability

...

CVE-2025-59273 Azure Event Grid System Elevation of Privilege Vulnerability

...

Azure Event Grid System Elevation of Privilege Vulnerability

Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges over a network...

Microsoft Azure Event Grid System 访问控制错误漏洞

Microsoft Azure Event Grid System is a fully managed event routing service system from Microsoft Corporation, USA. The Microsoft Azure Event Grid System is vulnerable to an access control error vulnerability that stems from improper access control and could lead to elevation of privilege. An...

KLA89723 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Compute Resource Provider can be exploited...

EUVD-2022-3087

Malicious code in bioql PyPI...

GHSA-826H-FXFF-HPQF Jenkins Azure Event Grid Build Notifier Plugin has Insufficiently Protected Credentials

Azure Event Grid Build Notifier Plugin stores the Azure Event Grid secret key unencrypted in job config.xml files on the Jenkins controller. This key can be viewed by users with Extended Read permission, or access to the Jenkins controller file system. As of publication of this advisory, there is...

Jenkins Azure Event Grid Build Notifier Plugin has Insufficiently Protected Credentials

Azure Event Grid Build Notifier Plugin stores the Azure Event Grid secret key unencrypted in job config.xml files on the Jenkins controller. This key can be viewed by users with Extended Read permission, or access to the Jenkins controller file system. As of publication of this advisory, there is...

CVE-2019-10421

Jenkins Azure Event Grid Build Notifier Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

Design/Logic Flaw

Jenkins Azure Event Grid Build Notifier Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

CVE-2019-10421

Jenkins Azure Event Grid Build Notifier Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

CVE-2019-10421

The CVE-2019-10421 issue concerns the Jenkins Azure Event Grid Build Notifier Plugin. The vulnerability arises from credentials (Azure Event Grid secret key) being stored unencrypted in job config.xml files on the Jenkins master/controller. This allows that confidential data to be exposed to user...

PT-2019-11815 · Jenkins · Jenkins Azure Event Grid Build Notifier Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Azure Event Grid Build Notifier Plugin affected versions not specified Description: The issue concerns the storage of credentials in an unencrypted manner in job config.xml files on the Jenkins master or controller. Specifically, the...

CloudBees Jenkins Azure Event Grid Build Notifier Plugin Information Disclosure Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing project and some timed tasks.Azure Event Grid Build Notifier Plugin is used i...