KLA12021
Multiple vulnerabilities in Microsoft Azure

Обновлено: 10/12/2020
Дата обнаружения
08/12/2020
Уровень угрозы
High
Описание

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. A security feature bypass vulnerability in Azure SDK for Java can be exploited remotely to bypass security restrictions.
  2. A security feature bypass vulnerability in Azure Sphere can be exploited remotely to bypass security restrictions.
Пораженные продукты

Azure Sphere
Azure SDK for Java

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
CVE-2020-16971
CVE-2020-17160
Оказываемое влияние
?
SB 
[?]
Связанные продукты
Microsoft Azure
CVE-IDS
CVE-2020-169710.0Unknown
CVE-2020-171600.0Unknown