Description
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, execute arbitrary code.
Below is a complete list of vulnerabilities:
- An elevation of privilege vulnerability in Azure Data Studio can be exploited remotely to gain privileges.
- A spoofing vulnerability in Azure SDK can be exploited remotely to spoof user interface.
- An elevation of privilege vulnerability in Microsoft Azure Kubernetes Service Confidential Container can be exploited remotely to gain privileges.
- A remote code execution vulnerability in Open Management Infrastructure (OMI) can be exploited remotely to execute arbitrary code.
- An elevation of privilege vulnerability in Open Management Infrastructure (OMI) can be exploited remotely to gain privileges.
- An elevation of privilege vulnerability in Software for Open Networking in the Cloud (SONiC) can be exploited remotely to gain privileges.
Original advisories
Exploitation
Public exploits exist for this vulnerability.
Related products
CVE list
- CVE-2024-21334 critical
- CVE-2024-21330 critical
- CVE-2024-26203 high
- CVE-2024-21421 critical
- CVE-2024-21400 critical
- CVE-2024-21418 critical
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!