Microsoft Azure Vulnerabilidad

Cronología

El año pasado

Versión

2020.1.28
2022.0.16
2019 Update 1.15
20195
20224

Contramedidas

Official Fix266
Temporary Fix1
Workaround0
Unavailable0
Not Defined8

Explotabilidad

High5
Functional3
Proof-of-Concept99
Unproven105
Not Defined63

Vector de acceso

Not Defined0
Physical8
Local58
Adjacent13
Network196

Autenticación

Not Defined0
High103
Low106
None66

La interacción del usuario

Not Defined0
Required43
None232

C3BM Index

El año pasado

CVSSv3 Base

≤10
≤20
≤33
≤425
≤541
≤636
≤783
≤857
≤925
≤105

CVSSv3 Temp

≤10
≤20
≤38
≤437
≤540
≤637
≤799
≤837
≤915
≤102

VulDB

≤10
≤20
≤333
≤430
≤524
≤626
≤736
≤899
≤923
≤104

NVD

≤10
≤20
≤30
≤40
≤54
≤621
≤723
≤814
≤98
≤1010

CNA

≤10
≤20
≤30
≤42
≤524
≤64
≤754
≤839
≤916
≤103

Proveedor

≤10
≤20
≤31
≤44
≤532
≤617
≤780
≤854
≤920
≤105

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k2
<2k6
<5k27
<10k95
<25k136
<50k6
<100k2
≥100k1

Explotar hoy

<1k143
<2k74
<5k43
<10k10
<25k4
<50k1
<100k0
≥100k0

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

Affected Versions (86): 1.0, 1.1, 1.2, 1.3.2, 1.4, 1.4.1, 1.4.2, 1.4.3, 1.4.4, 1.4.5, 1.6.4, 2.0, 2.0.3, 2.1, 2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.8, 2.9, 2.10, 2.11, 2.12, 2.13, 2.14, 2.15, 2.16, 2.17, 2.18, 2.19, 2.20, 2.21, 2.22, 2.23, 2.24, 2.25, 2.26, 2.27, 2.28, 2.29, 2.30, 2.31, 2.32, 2.33, 2.34, 2.35, 2.36, 2.37, 2.38, 2.39, 6.1, 6.1.1, 6.1.2, 6.1.3, 6.1.4, 6.1.5, 6.1.6, 6.1.7, 6.1.8, 6.1.9, 7, 8, 8.2, 8.6, 9.0, 9.1, 13.1, 14.0, 15.0, 16.0, 17.0, 20.05, 20.07, 2019, 2019 Update 1, 2019 Update 1.1, 2019.0.1, 2019.1.2, 2020.0.1, 2020.0.2, 2020.1.2, 2022, 2022.0.1, 2022.1

Link to Product Website: https://www.microsoft.com/

Tipo de software: Cloud Software

Fecha de publicaciónBaseTempVulnerabilidad0dayHoyExpConCTICVE
2024-04-163.53.4Microsoft Azure Site Recovery ASR Service divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.03
2024-04-098.87.7Microsoft Azure CycleCloud escalada de privilegios$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2024-29993
2024-04-094.44.2Microsoft Azure Identity Library for .NET divulgación de información$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-29992
2024-04-099.08.1Microsoft Azure Kubernetes Service Confidential Containers escalada de privilegios$5k-$25k$5k-$25kProof-of-ConceptOfficial Fix0.03CVE-2024-29990
2024-04-097.36.4Microsoft Azure Monitor Agent escalada de privilegios$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2024-29989
2024-04-096.35.7Microsoft Azure AI Search autenticación débil$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2024-29063
2024-04-096.45.9Microsoft Azure Migrate escalada de privilegios$5k-$25k$0-$5kFunctionalOfficial Fix0.03CVE-2024-26193
2024-04-095.44.7Microsoft Azure Compute Gallery escalada de privilegios$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2024-21424
2024-04-095.95.2Microsoft Azure Private 5G Core denegación de servicio$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2024-20685
2024-03-127.37.0Microsoft Azure Data Studio Local Privilege Escalation$5k-$25k$0-$5kHighOfficial Fix0.03CVE-2024-26203
2024-03-126.86.2Microsoft Azure SDK divulgación de información$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2024-21421
2024-03-127.87.3Microsoft Azure Automation Open Management Infrastructure Local Privilege Escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.06CVE-2024-21330
2024-03-129.08.4Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2024-21400
2024-02-139.08.4Microsoft Azure Kubernetes Service Confidential Containers Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2024-21403
2024-02-135.04.7Microsoft Azure File Sync Local Privilege Escalation$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.03CVE-2024-21397
2024-02-136.25.8Microsoft Azure Active Directory B2C Privilege Escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.07CVE-2024-21381
2024-02-139.08.4Microsoft Azure Kubernetes Service Confidential Containers Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.08CVE-2024-21376
2024-02-139.18.5Microsoft Azure Site Recovery Local Privilege Escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2024-21364
2024-02-137.56.8Microsoft Azure Connected Machine Agent Local Privilege Escalation$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2024-21329
2024-02-135.95.6Microsoft Azure Stack Hub divulgación de información$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2024-20679
2024-02-137.56.8Microsoft Azure DevOps Server Privilege Escalation$5k-$25k$0-$5kUnprovenOfficial Fix0.03CVE-2024-20667
2024-01-098.07.3Microsoft Azure Storage Mover Agent Privilege Escalation$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2024-20676
2024-01-035.04.8Microsoft Azure GitHub Action escalada de privilegios$5k-$25k$5k-$25kNot DefinedNot Defined0.02
2023-12-145.45.3Microsoft Azure DevOps Server vulnerabilidad desconocida$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-21751
2023-12-128.47.9Microsoft Azure Logic Apps/Power Platform Remote Code Execution$5k-$25k$0-$5kUnprovenOfficial Fix0.09CVE-2023-36019

250 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 250 results.

más entradas por Microsoft

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!