5 matches found
CVE-2019-1372
An remote code execution vulnerability exists when Azure App Service/ Antares on Azure Stack fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability could allow an unprivileged function run by the user to execute code in the cont...
CVE-2023-36052
Azure CLI REST Command Information Disclosure Vulnerability
CVE-2023-21777
Azure App Service on Azure Stack Hub Elevation of Privilege Vulnerability
CVE-2018-8600
A Cross-site Scripting (XSS) vulnerability exists when Azure App Services on Azure Stack does not properly sanitize user provided input, aka "Azure App Service Cross-site Scripting Vulnerability." This affects Azure App.
CVE-2025-53765
Exposure of private personal information to an unauthorized actor in Azure Stack allows an authorized attacker to disclose information locally.