KLA12021
Multiple vulnerabilities in Microsoft Azure

Updated: 12/10/2020
Detect date
?
12/08/2020
Severity
?
High
Description

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. A security feature bypass vulnerability in Azure SDK for Java can be exploited remotely to bypass security restrictions.
  2. A security feature bypass vulnerability in Azure Sphere can be exploited remotely to bypass security restrictions.
Affected products

Azure Sphere
Azure SDK for Java

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2020-16971
CVE-2020-17160

Impacts
?
SB 
[?]
Related products
Microsoft Azure
CVE-IDS
?
CVE-2020-169710.0Unknown
CVE-2020-171600.0Unknown