An information disclosure vulnerability exists in the way Azure WaLinuxAgent creates swap files on resource disks, aka 'Azure Linux Agent Information Disclosure Vulnerability'.
6.5CVSS
5.9AI Score
0.003EPSS
8.1CVSS
8.1AI Score
0.002EPSS
6.1CVSS
6.7AI Score
0.0004EPSS
6.1CVSS
6.7AI Score
0.003EPSS
5.7CVSS
6.2AI Score
0.0004EPSS
7.3CVSS
7.4AI Score
0.001EPSS
6.2CVSS
6.4AI Score
0.002EPSS
6.2CVSS
6.5AI Score
0.001EPSS
7.3CVSS
7.4AI Score
0.004EPSS
6.9CVSS
7.2AI Score
0.0004EPSS
5.4CVSS
6.2AI Score
0.0004EPSS
6.2CVSS
6.3AI Score
0.001EPSS
7.3CVSS
7.4AI Score
0.001EPSS
7.5CVSS
7.7AI Score
0.001EPSS
5.4CVSS
5.9AI Score
0.001EPSS
7.3CVSS
7.4AI Score
0.001EPSS
A code execution vulnerability exists in the normal world’s signed code execution functionality of Microsoft Azure Sphere 20.07. A specially crafted AF_PACKET socket can cause a process to create an executable memory mapping with controllable content. An attacker can execute a shellcode that uses t...
7.8CVSS
7.7AI Score
0.001EPSS
A denial-of-service vulnerability exists in the asynchronous ioctl functionality of Microsoft Azure Sphere 20.05. A sequence of specially crafted ioctl calls can cause a denial of service. An attacker can write shellcode to trigger this vulnerability.
5.5CVSS
5.3AI Score
0.0004EPSS
4.4CVSS
5.2AI Score
0.0004EPSS
7.7CVSS
7.5AI Score
0.0004EPSS
6CVSS
6.2AI Score
0.0004EPSS
6.2CVSS
6.6AI Score
0.002EPSS
9.3CVSS
9.3AI Score
0.001EPSS
8.1CVSS
8.1AI Score
0.001EPSS
4.4CVSS
5.7AI Score
0.0004EPSS
6.7CVSS
4.8AI Score
0.001EPSS
4.4CVSS
4.6AI Score
0.0004EPSS
2.3CVSS
4.2AI Score
0.0004EPSS
6CVSS
6.1AI Score
0.0004EPSS
4.4CVSS
5.4AI Score
0.0004EPSS