Lucene search
K

29 matches found

OSV
OSV
added 2026/01/30 3:36 p.m.5 views

CLEANSTART-2026-DY37532 Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability

Security vulnerability affects the cortex-fips package. Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...

9.8CVSS8.8AI score0.00788EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-2098

Malicious code in bioql PyPI...

5.5CVSS6.7AI score0.00788EPSS
Exploits0References8
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/30 2:56 p.m.12 views

Security Bulletin: Vulnerability in Microsoft Azure Identity Libraries and Microsoft Authentication Library affects watsonx.data

Summary Microsoft Azure Identity Libraries and Microsoft Authentication Library is vulnerable to elevation of privileges attacks. This could affect watsonx.data. Vulnerability Details CVEID:CVE-2024-35255 DESCRIPTION: Microsoft Azure Identity Libraries and Microsoft Authentication Library could...

5.5CVSS5.7AI score0.00788EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2024/09/24 12:51 p.m.3 views

azure-identity: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity

A flaw was found in Microsoft's Azure Identity Libraries and the Microsoft Authentication Library MSAL. The flaw arises from a race condition—a scenario where the timing of events leads to unexpected behavior—during concurrent operations on shared resources. This can result in privilege escalatio...

5.5CVSS7.3AI score0.00788EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2024/09/21 12:0 a.m.17 views

openSUSE Security Advisory (SUSE-SU-2024:3345-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7AI score0.00788EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/09/09 12:0 a.m.65 views

Amazon Linux 2023 : amazon-cloudwatch-agent (ALAS2023-2024-708)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-708 advisory. Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability CVE-2024-35255 The OpenTelemetry Collector offers a vendor-agnostic implementation on how to...

9.9CVSS7.4AI score0.16496EPSS
Exploits1References10
Amazon
Amazon
added 2024/09/04 12:0 a.m.7 views

Important: amazon-cloudwatch-agent

Issue Overview: Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability CVE-2024-35255 The OpenTelemetry Collector offers a vendor-agnostic implementation on how to receive, process and export telemetry data. An unsafe decompression vulnerability allows...

9.9CVSS7.4AI score0.16496EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/22 3:6 p.m.31 views

Security Bulletin: IBM App Connect Enterprise is vulnerable to a local authenticated attack and denial of service due to Microsoft Azure Identity Libraries and Microsoft Authentication Library and gRPC on Node.js (CVE-2024-35255, CVE-2024-37168)

Summary IBM App Connect Enterprise is vulnerable to a local authenticated attack and denial of service due to Microsoft Azure Identity Libraries and Microsoft Authentication Library and gRPC on Node.js. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details...

5.5CVSS6.2AI score0.00788EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/07/01 9:50 p.m.16 views

GO-2024-2918 Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity

Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity...

5.5CVSS6.1AI score0.00788EPSS
Exploits0References4
OSV
OSV
added 2024/06/28 3:28 p.m.11 views

GO-2024-2941 ACME DNS: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/traefik/traefik

ACME DNS: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/traefik/traefik...

5.5CVSS6.1AI score0.00788EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/06/26 12:0 a.m.6 views

The vulnerability of the DefaultAzureCredential and ManagedIdentityCredential components of the Azure Identity Libraries and Microsoft Authentication Library allows a perpetrator to escalate their privileges.

The vulnerability of the DefaultAzureCredential and ManagedIdentityCredential components in the Azure Identity Libraries and Microsoft Authentication Library authentication libraries is related to synchronization errors when using a common resource. Exploiting this vulnerability can allow attacke...

5.5CVSS6.3AI score0.00788EPSS
Exploits0References7Affected Software2
Tenable Nessus
Tenable Nessus
added 2024/06/22 12:0 a.m.26 views

FreeBSD : traefik -- Azure Identity Libraries Elevation of Privilege Vulnerability (82830965-3073-11ef-a17d-5404a68ad561)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 82830965-3073-11ef-a17d-5404a68ad561 advisory. The traefik authors report: There is a vulnerability in Azure Identity Libraries and Microsoft...

5.5CVSS7.2AI score0.00788EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/06/20 4:20 p.m.23 views

ACME DNS: Azure Identity Libraries Elevation of Privilege Vulnerability

Impact There is a vulnerability in Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability. References - CVE-2024-35255 Patches - https://github.com/traefik/traefik/releases/tag/v2.11.5 - https://github.com/traefik/traefik/releases/tag/v3.0.3 Workarounds...

5.5CVSS6.7AI score0.00788EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2024/06/20 4:20 p.m.17 views

GHSA-RVJ4-Q8Q5-8GRF ACME DNS: Azure Identity Libraries Elevation of Privilege Vulnerability

Impact There is a vulnerability in Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability. References - CVE-2024-35255 Patches - https://github.com/traefik/traefik/releases/tag/v2.11.5 - https://github.com/traefik/traefik/releases/tag/v3.0.3 Workarounds...

6.8CVSS6.1AI score0.00788EPSS
Exploits0References5
OSV
OSV
added 2024/06/11 6:30 p.m.7 views

GHSA-M5VV-6R4H-3VJ9 Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...

6.8CVSS6.9AI score0.00788EPSS
Exploits0References8
OSV
OSV
added 2024/06/11 5:16 p.m.5 views

AZL-43323 CVE-2024-35255 affecting package blobfuse2 for versions less than 2.3.2-1

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...

5.5CVSS6.7AI score0.00788EPSS
Exploits0References1
OSV
OSV
added 2024/06/11 5:16 p.m.6 views

AZL-42789 CVE-2024-35255 affecting package azcopy for versions less than 10.25.1-1

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...

5.5CVSS6.7AI score0.00788EPSS
Exploits0References1
OSV
OSV
added 2024/06/11 5:16 p.m.12 views

AZL-42655 CVE-2024-35255 affecting package application-gateway-kubernetes-ingress for versions less than 1.7.7-1

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...

5.5CVSS6.7AI score0.00788EPSS
Exploits0References1
OSV
OSV
added 2024/06/11 5:16 p.m.6 views

AZL-42646 CVE-2024-35255 affecting package prometheus for versions less than 2.45.4-12

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...

5.5CVSS6.7AI score0.00788EPSS
Exploits0References1
OSV
OSV
added 2024/06/11 5:16 p.m.8 views

AZL-42649 CVE-2024-35255 affecting package telegraf for versions less than 1.31.0-9

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability...

5.5CVSS6.7AI score0.00788EPSS
Exploits0References1
Rows per page
Query Builder