Multiple vulnerabilities in Microsoft Azure

Описание

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service.

Below is a complete list of vulnerabilities:

1. An elevation of privilege vulnerability in Azure Science Virtual Machine (DSVM) can be exploited remotely to gain privileges.
2. An elevation of privilege vulnerability in Microsoft Azure File Sync can be exploited remotely to gain privileges.
3. An elevation of privilege vulnerability in Azure Monitor Agent can be exploited remotely to gain privileges.
4. A denial of service vulnerability in Azure Storage Movement Client Library can be exploited to cause denial of service.
5. An elevation of privilege vulnerability in Azure Identity Libraries and Microsoft Authentication Library can be exploited remotely to gain privileges.

Первичный источник обнаружения

• CVE-2024-37325
  CVE-2024-35253
  CVE-2024-35254
  CVE-2024-35252
  CVE-2024-35255
  

Связанные продукты

• Microsoft-Azure
• .NET

Список CVE

• CVE-2024-35252
  high
• CVE-2024-35255
  high
• CVE-2024-37325
  high
• CVE-2024-35253
  warning
• CVE-2024-35254
  high

Список KB

• 5039814
• 5023058

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com