Searching
..

Click anywhere to stop

KLA12477
Multiple vulnerabilities in Microsoft Azure

Обновлено: 09/03/2022
Дата обнаружения
08/03/2022
Уровень угрозы
High
Описание

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges.

Below is a complete list of vulnerabilities:

  1. A remote code execution vulnerability in Azure Site Recovery can be exploited remotely to execute arbitrary code.
  2. An elevation of privilege vulnerability in Azure Site Recovery can be exploited remotely to gain privileges.
Пораженные продукты

Azure Site Recovery VMWare to Azure

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
CVE-2022-24517
CVE-2022-24520
CVE-2022-24471
CVE-2022-24518
CVE-2022-24468
CVE-2022-24515
CVE-2022-24506
CVE-2022-24470
CVE-2022-24467
CVE-2022-24519
CVE-2022-24469
Оказываемое влияние
?
ACE 
[?]

PE 
[?]
Связанные продукты
Microsoft Azure
Узнай статистику распространения уязвимостей в твоем регионе