Lucene search
K

4 matches found

Prion
Prion
added 2022/06/01 8:15 p.m.41 views

Remote code execution

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs,...

9.3CVSS8.3AI score0.99374EPSS
Exploits62References2Affected Software4
NVD
NVD
added 2021/11/24 1:15 a.m.23 views

CVE-2021-42306

An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential on an Azure AD Application or Service Principal which is not recommended. This vulnerability allows a user or service in the...

8.1CVSS0.03082EPSS
Exploits0References1
Prion
Prion
added 2021/11/24 1:15 a.m.22 views

Information disclosure

An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential? on an Azure AD Application or Service Principal which is not recommended. This vulnerability allows a user or service in the...

4CVSS7.6AI score0.03082EPSS
Exploits0References1Affected Software4
Microsoft CVE
Microsoft CVE
added 2021/11/17 8:0 a.m.63 views

Azure Active Directory Information Disclosure Vulnerability

An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential on an Azure AD Application or Service Principal which is not recommended. This vulnerability allows a user or service in the...

8.1CVSS6.9AI score0.03082EPSS
Exploits0
Rows per page
Query Builder