Microsoft Azure Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

2020.1.28
2022.0.16
2019 Update 1.15
20195
20224

Contromisure

Official Fix267
Temporary Fix1
Workaround0
Unavailable0
Not Defined9

Sfruttabilità

High5
Functional3
Proof-of-Concept99
Unproven105
Not Defined65

Accesso al vettore

Not Defined0
Physical8
Local58
Adjacent14
Network197

Autenticazione

Not Defined0
High103
Low107
None67

Interazione dell'utente

Not Defined0
Required44
None233

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤33
≤425
≤542
≤636
≤783
≤858
≤925
≤105

CVSSv3 Temp

≤10
≤20
≤38
≤437
≤541
≤637
≤799
≤838
≤915
≤102

VulDB

≤10
≤20
≤333
≤430
≤525
≤626
≤736
≤8100
≤923
≤104

NVD

≤10
≤20
≤30
≤40
≤54
≤621
≤723
≤814
≤98
≤1010

CNA

≤10
≤20
≤30
≤42
≤524
≤64
≤754
≤839
≤916
≤103

Fornitore

≤10
≤20
≤31
≤44
≤532
≤617
≤780
≤854
≤920
≤105

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k2
<2k6
<5k27
<10k96
<25k137
<50k6
<100k2
≥100k1

Exploiter aujourd'hui

<1k142
<2k75
<5k44
<10k10
<25k5
<50k1
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (86): 1.0, 1.1, 1.2, 1.3.2, 1.4, 1.4.1, 1.4.2, 1.4.3, 1.4.4, 1.4.5, 1.6.4, 2.0, 2.0.3, 2.1, 2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.8, 2.9, 2.10, 2.11, 2.12, 2.13, 2.14, 2.15, 2.16, 2.17, 2.18, 2.19, 2.20, 2.21, 2.22, 2.23, 2.24, 2.25, 2.26, 2.27, 2.28, 2.29, 2.30, 2.31, 2.32, 2.33, 2.34, 2.35, 2.36, 2.37, 2.38, 2.39, 6.1, 6.1.1, 6.1.2, 6.1.3, 6.1.4, 6.1.5, 6.1.6, 6.1.7, 6.1.8, 6.1.9, 7, 8, 8.2, 8.6, 9.0, 9.1, 13.1, 14.0, 15.0, 16.0, 17.0, 20.05, 20.07, 2019, 2019 Update 1, 2019 Update 1.1, 2019.0.1, 2019.1.2, 2020.0.1, 2020.0.2, 2020.1.2, 2022, 2022.0.1, 2022.1

Link to Product Website: https://www.microsoft.com/

Tipo di software: Cloud Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
30/04/20248.07.6Microsoft Azure Synapse Analytics escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.43
29/04/20244.34.3Microsoft Azure AI Playground Markdown escalazione di privilegi$5k-$25k$5k-$25kNot DefinedNot Defined0.09
16/04/20243.53.4Microsoft Azure Site Recovery ASR Service rivelazione di un 'informazione$5k-$25k$0-$5kNot DefinedOfficial Fix0.03
09/04/20248.87.7Microsoft Azure CycleCloud escalazione di privilegi$5k-$25k$5k-$25kUnprovenOfficial Fix0.04CVE-2024-29993
09/04/20244.44.2Microsoft Azure Identity Library for .NET rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-29992
09/04/20249.08.1Microsoft Azure Kubernetes Service Confidential Containers escalazione di privilegi$5k-$25k$5k-$25kProof-of-ConceptOfficial Fix0.04CVE-2024-29990
09/04/20247.36.4Microsoft Azure Monitor Agent escalazione di privilegi$5k-$25k$0-$5kUnprovenOfficial Fix0.05CVE-2024-29989
09/04/20246.35.7Microsoft Azure AI Search autenticazione debole$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2024-29063
09/04/20246.45.9Microsoft Azure Migrate escalazione di privilegi$5k-$25k$0-$5kFunctionalOfficial Fix0.03CVE-2024-26193
09/04/20245.44.7Microsoft Azure Compute Gallery escalazione di privilegi$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2024-21424
09/04/20245.95.2Microsoft Azure Private 5G Core denial of service$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2024-20685
12/03/20247.37.0Microsoft Azure Data Studio Local Privilege Escalation$5k-$25k$0-$5kHighOfficial Fix0.00CVE-2024-26203
12/03/20246.86.2Microsoft Azure SDK rivelazione di un 'informazione$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2024-21421
12/03/20247.87.3Microsoft Azure Automation Open Management Infrastructure Local Privilege Escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.06CVE-2024-21330
12/03/20249.08.4Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2024-21400
13/02/20249.08.4Microsoft Azure Kubernetes Service Confidential Containers Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2024-21403
13/02/20245.04.7Microsoft Azure File Sync Local Privilege Escalation$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.03CVE-2024-21397
13/02/20246.25.8Microsoft Azure Active Directory B2C Privilege Escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2024-21381
13/02/20249.08.4Microsoft Azure Kubernetes Service Confidential Containers Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.08CVE-2024-21376
13/02/20249.18.5Microsoft Azure Site Recovery Local Privilege Escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2024-21364
13/02/20247.56.8Microsoft Azure Connected Machine Agent Local Privilege Escalation$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2024-21329
13/02/20245.95.6Microsoft Azure Stack Hub rivelazione di un 'informazione$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2024-20679
13/02/20247.56.8Microsoft Azure DevOps Server Privilege Escalation$5k-$25k$0-$5kUnprovenOfficial Fix0.05CVE-2024-20667
09/01/20248.07.3Microsoft Azure Storage Mover Agent Privilege Escalation$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2024-20676
03/01/20245.04.8Microsoft Azure GitHub Action escalazione di privilegi$5k-$25k$5k-$25kNot DefinedNot Defined0.02

252 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 252 results.

altre voci di Microsoft

PrecedenteVisione D'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!