3 matches found
CVE-2024-35255
CVE-2024-35255 is an elevation-of-privilege vulnerability described as a race-condition issue in Azure Identity Libraries and Microsoft Authentication Library. IBM’s security bulletin for IBM Cloud Pak for AIOps lists CVE-2024-35255 with a base score of 5.5 (CVSS 3.0) and CWE-362, affecting IBM R...
CVE-2023-36414
CVE-2023-36414 describes a remote code execution risk in the Microsoft Azure Identity SDK caused by an integer overflow. The vulnerability affects multiple Azure Identity SDK components (for Java, JavaScript, .NET, Python, and related Azure services) and can be exploited remotely over network wit...
CVE-2023-36415
CVE-2023-36415 corresponds to a Remote Code Execution vulnerability in the Azure Identity SDK affecting multiple language SDKs (Java, Python, .NET, JavaScript). The issue is exploitable over the network with low attack complexity and low privileges, and has a High impact on confidentiality, integ...