KLA12338
Multiple vulnerabilities in Microsoft Azure

Обновлено: 25/11/2021

Дата обнаружения	09/11/2021
Уровень угрозы	High
Описание	Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: An information disclosure vulnerability in Azure RTOS can be exploited remotely to obtain sensitive information. An elevation of privilege vulnerability in Azure RTOS can be exploited remotely to gain privileges. An information disclosure vulnerability in Azure Sphere can be exploited remotely to obtain sensitive information. A tampering vulnerability in Azure Sphere can be exploited remotely to spoof user interface. An information disclosure vulnerability in FSLogix can be exploited remotely to obtain sensitive information.
Пораженные продукты	Azure Sphere Azure RTOS FSLogix
Решение	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Первичный источник обнаружения	CVE-2021-42301 CVE-2021-42304 CVE-2021-26444 CVE-2021-41375 CVE-2021-41374 CVE-2021-42303 CVE-2021-42300 CVE-2021-42323 CVE-2021-41376 CVE-2021-42302 CVE-2021-41373
Оказываемое влияние ?	OSI [?] PE [?] SUI [?]
Связанные продукты	Microsoft Azure
	Узнай статистику распространения уязвимостей в твоем регионе

KLA12338Multiple vulnerabilities in Microsoft Azure

KLA12338
Multiple vulnerabilities in Microsoft Azure