Multiple vulnerabilities in Microsoft Azure

Popis

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface.

Below is a complete list of vulnerabilities:

1. An elevation of privilege vulnerability in Azure Arc-enabled Kubernetes cluster Connect can be exploited remotely to gain privileges.
2. An elevation of privilege vulnerability in StorSimple 8000 Series can be exploited remotely to gain privileges.
3. A spoofing vulnerability in Service Fabric Explorer can be exploited remotely to spoof user interface.

Oficiální doporučení

• CVE-2022-37968

• CVE-2022-38017
• CVE-2022-35829

Vykořisťování

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Související produkty

• Microsoft-Edge
• Microsoft-Azure

seznam CVE

• CVE-2022-37968
  critical
• CVE-2022-38017
  high
• CVE-2022-35829
  warning

seznam KB

Zobrazit více

Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com