Multiple vulnerabilities in Microsoft Azure

Описание

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, bypass security restrictions, spoof user interface.

Below is a complete list of vulnerabilities:

1. An elevation of privilege vulnerability in Azure Automation can be exploited remotely to gain privileges.
2. An information disclosure vulnerability in Microsoft msagsfeedback.azurewebsites.net can be exploited remotely to obtain sensitive information.
3. An information disclosure vulnerability in Microsoft Power Apps can be exploited remotely to obtain sensitive information.
4. A spoofing vulnerability in Azure Storage Resource Provider can be exploited remotely to spoof user interface.

Первичный источник обнаружения

• CVE-2025-29827
  CVE-2025-33072
  CVE-2025-47733
  CVE-2025-29972
  

Связанные продукты

• Microsoft-Azure

Список CVE

• CVE-2025-29827
  critical
• CVE-2025-29972
  critical
• CVE-2025-33072
  critical
• CVE-2025-47733
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com