Lucene search
K
MicrosoftAzure Cyclecloud

8 matches found

CVE
CVE
added 2024/04/09 5:1 p.m.152 views

CVE-2024-29993

CVE-2024-29993 affects Azure CycleCloud and is an Elevation of Privilege vulnerability. Microsoft/MSRC lists this vulnerability under Azure CycleCloud with a CVSSv3 base score of 8.8 (Network, Privileges Required: Low, User Interaction: None; impacts Confidentiality, Integrity, Availability). The...

8.8CVSS8.7AI score0.01992EPSS
CVE
CVE
added 2021/08/12 6:11 p.m.113 views

CVE-2021-33762

Azure CycleCloud CVE-2021-33762 is a local, privilege-escalation vulnerability. An authenticated, local attacker could exploit this to elevate privileges on the affected CycleCloud component. Several connected sources corroborate the issue (e.g., Nessus plug‑in notes privilege escalation to obtai...

7.8CVSS6.9AI score0.00474EPSS
CVE
CVE
added 2022/11/09 12:0 a.m.111 views

CVE-2022-41085

CVE-2022-41085 corresponds to an Elevation of Privilege vulnerability in Microsoft Azure CycleCloud. Connected documents indicate affected versions Azure CycleCloud 7 and 8, with root cause described as insufficient access controls in some sources. Remediation guidance across sources points to ap...

8.8CVSS7.5AI score0.0067EPSS
CVE
CVE
added 2021/08/12 6:12 p.m.107 views

CVE-2021-36943

CVE-2021-36943 is an Azure CycleCloud elevation of privilege issue. Connected sources confirm a local escalation vulnerability in Azure CycleCloud, with root cause described as insufficient access control allowing a local attacker to elevate privileges. Public disclosures note the vulnerability a...

7.8CVSS4.5AI score0.00713EPSS
CVE
CVE
added 2024/08/13 5:30 p.m.86 views

CVE-2024-38195

CVE-2024-38195 is an Azure CycleCloud remote code execution vulnerability identified by Microsoft. Connected sources confirm an access-control related flaw that could enable an attacker to execute arbitrary code on affected systems. Reported affected products/versions include Azure CycleCloud 8.0...

7.8CVSS7.9AI score0.00514EPSS
CVE
CVE
added 2024/07/09 5:3 p.m.79 views

CVE-2024-38092

CVE-2024-38092 is an Elevation of Privilege vulnerability in Microsoft Azure CycleCloud. The Azure CycleCloud product is affected; CVE details indicate a privilege escalation path, with a CVSSv3 base score of 8.8 (High) and exploitability characteristics (network access, low attack complexity, lo...

8.8CVSS8.7AI score0.01625EPSS
CVE
CVE
added 2024/11/12 5:53 p.m.75 views

CVE-2024-43602

CVE-2024-43602 (Azure CycleCloud Remote Code Execution Vulnerability) affects Azure CycleCloud; authenticated attackers can exploit a storage-credential disclosure to execute arbitrary code on a target node. The issue is tied to CycleCloud’s configuration handling and can lead to remote code exec...

9.9CVSS9.7AI score0.02203EPSS
CVE
CVE
added 2024/09/10 4:54 p.m.73 views

CVE-2024-43469

CVE-2024-43469 affects Microsoft Azure CycleCloud. The vulnerability enables remote code execution due to a disclosure of storage credentials, allowing an authenticated, remote attacker to bypass authentication and execute arbitrary commands with root privileges. CVSSv3.1 base score is 8.8 (HIGH)...

8.8CVSS8.9AI score0.01595EPSS