Multiple vulnerabilities in Microsoft Azure

Popis

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Azure RTOS GUIX Studio can be exploited remotely to execute arbitrary code.
2. An elevation of privilege vulnerability in Windows Subsystem for Linux (WSL2) Kernel can be exploited remotely to gain privileges.
3. An elevation of privilege vulnerability in Azure CycleCloud can be exploited remotely to gain privileges.
4. A remote code execution vulnerability in Azure CLI can be exploited remotely to execute arbitrary code.

Oficiální doporučení

• CVE-2022-41051

• CVE-2022-38014
• CVE-2022-41085
• CVE-2022-39327

Vykořisťování

Public exploits exist for this vulnerability.

Související produkty

• Microsoft-Azure

seznam CVE

• CVE-2022-38014
  high
• CVE-2022-41051
  critical
• CVE-2022-41085
  critical
• CVE-2022-39327
  critical

seznam KB

Zobrazit více

Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com