Description
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code.
Below is a complete list of vulnerabilities:
- A security feature bypass vulnerability in Microsoft On-Prem Data Gateway can be exploited remotely to bypass security restrictions.
- An information disclosure vulnerability in Azure CLI REST Command can be exploited remotely to obtain sensitive information.
- A remote code execution vulnerability in Azure DevOps Server can be exploited remotely to execute arbitrary code.
- A remote code execution vulnerability in Microsoft Host Integration Server 2020 can be exploited remotely to execute arbitrary code.
Original advisories
Related products
CVE list
- CVE-2023-36021 critical
- CVE-2023-36052 critical
- CVE-2023-36437 critical
- CVE-2023-38151 critical
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!