Multiple vulnerabilities in Microsoft Azure

Описание

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface.

Below is a complete list of vulnerabilities:

1. An elevation of privilege vulnerability in Azure Sphere can be exploited remotely to gain privileges.
2. A code execution vulnerability in Azure Sphere can be exploited remotely to execute arbitrary code.
3. A denial of service vulnerability in Azure Sphere can be exploited remotely to cause denial of service.
4. An information disclosure vulnerability in Azure Sphere can be exploited remotely to obtain sensitive information.
5. A tampering vulnerability in Azure Sphere can be exploited remotely to spoof user interface.

Первичный источник обнаружения

• CVE-2020-16989
  CVE-2020-16987
  CVE-2020-16992
  CVE-2020-16986
  CVE-2020-16994
  CVE-2020-16984
  CVE-2020-16985
  CVE-2020-16991
  CVE-2020-16990
  CVE-2020-16993
  CVE-2020-16981
  CVE-2020-16982
  CVE-2020-16970
  CVE-2020-16988
  CVE-2020-16983
  

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Azure

Список CVE

• CVE-2020-16989
  high
• CVE-2020-16987
  high
• CVE-2020-16992
  critical
• CVE-2020-16986
  high
• CVE-2020-16994
  high
• CVE-2020-16984
  high
• CVE-2020-16985
  high
• CVE-2020-16991
  high
• CVE-2020-16990
  high
• CVE-2020-16993
  high
• CVE-2020-16981
  high
• CVE-2020-16982
  high
• CVE-2020-16970
  critical
• CVE-2020-16988
  high
• CVE-2020-16983
  high

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com