Multiple vulnerabilities in Microsoft Azure

Описание

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges.

Below is a complete list of vulnerabilities:

1. An unsigned code execution vulnerability in Azure Sphere can be exploited remotely to execute arbitrary code.
2. An elevation of privilege vulnerability in Azure ms-rest-nodeauth Library can be exploited remotely to gain privileges.

Первичный источник обнаружения

• CVE-2021-28460
  CVE-2021-28458
  

Связанные продукты

• Microsoft-Azure

Список CVE

• CVE-2021-28460
  critical
• CVE-2021-28458
  critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com