4 matches found
CVE-2024-21397
CVE-2024-21397 — Microsoft Azure File Sync Elevation of Privilege is an Azure File Sync Agent vulnerability where an issue could allow unauthorized users to create files in locations they are not allowed to access. The primary public details describe the impact as an elevation of privileges with ...
CVE-2024-35253
CVE-2024-35253 affects Microsoft Azure File Sync: elevation of privilege in the Azure File Sync Agent on Windows Server. Nessus/SCCM data show affected agent versions include 17.0 prior to 17.3 and 18.0 prior to 18.1; mitigation is to upgrade to 17.3 (KB5023054) or 18.1 (KB5023058) as part of Jun...
CVE-2025-29973
Azure File Sync Elevation of Privilege (CVE-2025-29973): improper access control allows an authorized local attacker to escalate privileges. Affected product: Microsoft Azure File Sync. CVSS v3.1 base score 7.0 (HIGH). Remediation: patch/update from Microsoft; NCSC confirms fixes have been releas...
CVE-2025-53729
The CVE-2025-53729 entry concerns an Elevation of Privilege in Microsoft Azure File Sync. The vulnerability affects the Azure File Sync Agent on Windows Server installations prior to the 18.3 release (v18.3.0.0 fixes the issue; versions up to 18.2 and earlier are affected). The underlying problem...