1048 matches found
Azure Sphere Unsigned Code Execution Vulnerability
...
Azure Sphere Unsigned Code Execution Vulnerability
...
PT-2020-4883 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue exists due to insufficient input validation in the Littlefs Quota component of the Azure Sphere operating system. Exploitation of this issue may allow an attacker to cause a...
PT-2020-4815 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to a lack of protection for service data in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to gain unauthorized access to the...
PT-2020-4812 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to a lack of protection for service data in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to gain unauthorized access to the...
PT-2020-4767 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to errors in privilege management within the Azure Sphere operating system. It allows a remote attacker to potentially elevate their privileges. Recommendations: A...
PT-2020-4765 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to errors in privilege management within the Azure Sphere operating system. Exploitation of this issue may allow a remote attacker to elevate their privileges...
PT-2020-4811 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to incorrect code generation management in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to execute arbitrary code using a...
PT-2020-4818 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to insufficient access control in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to elevate their privileges. Recommendations:...
PT-2020-4884 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to errors in code generation management in the MTD driver of the Azure Sphere operating system. Exploitation of this issue may allow an attacker to execute arbitra...
PT-2020-4816 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to incorrect code generation management in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to execute arbitrary code by...
PT-2020-4766 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to errors in code generation management in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to execute arbitrary code...
PT-2020-4814 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to incorrect code generation management in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to execute arbitrary code using a...
PT-2020-4813 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to insufficient access control in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to elevate their privileges. Recommendations:...
PT-2020-4810 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to insufficient access control in the Azure Sphere operating system. Exploitation of this issue may allow an attacker to elevate their privileges. Recommendations:...
PT-2020-4764 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to errors in privilege management within the Azure Sphere operating system. Exploitation of this issue could allow a remote attacker to elevate their privileges...
PT-2020-4886 · Microsoft · Azure Sphere
Name of the Vulnerable Software and Affected Versions: Azure Sphere affected versions not specified Description: The issue is related to a socket implementation error in the Azure Sphere operating system, specifically with the AF AZSPIO socket. It involves a memory reuse error, which can be...
handbook.spherestandards.org Cross Site Scripting vulnerability OBB-1477598
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Why we invite security researchers to hack Azure Sphere
Fighting the security battle so our customers don’t have to IoT devices are becoming more prevalent in almost every aspect of our lives—we will rely on them in our homes, our businesses, as well as our infrastructure. In February, Microsoft announced the general availability of Azure Sphere, an...
Concluding the Azure Sphere Security Research Challenge, Microsoft Awards $374,300 to Global Security Research Community
The Azure Sphere Security Research Challenge brought together 70 researchers from 21 countries to help secure Azure Sphere customers and expand Microsoft’s partnerships with the global IoT security research community. During the three-month Azure Sphere Security Research Challenge, researchers...