Search
Search Results (404 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-38176 | 1 Microsoft | 2 Azure Arc-enabled Servers, Azure Arc Enabled Server | 2025-01-01 | 7 High |
| Azure Arc-Enabled Servers Elevation of Privilege Vulnerability | ||||
| CVE-2023-36869 | 1 Microsoft | 1 Azure Devops Server | 2025-01-01 | 6.3 Medium |
| Azure DevOps Server Spoofing Vulnerability | ||||
| CVE-2023-36868 | 1 Microsoft | 2 Azure Service Fabric, Windows | 2025-01-01 | 6.5 Medium |
| Azure Service Fabric on Windows Information Disclosure Vulnerability | ||||
| CVE-2023-21565 | 1 Microsoft | 1 Azure Devops Server | 2025-01-01 | 7.1 High |
| Azure DevOps Server Spoofing Vulnerability | ||||
| CVE-2023-21569 | 1 Microsoft | 1 Azure Devops Server | 2025-01-01 | 5.5 Medium |
| Azure DevOps Server Spoofing Vulnerability | ||||
| CVE-2023-23383 | 1 Microsoft | 1 Azure Service Fabric | 2025-01-01 | 8.2 High |
| Service Fabric Explorer Spoofing Vulnerability | ||||
| CVE-2023-21564 | 1 Microsoft | 1 Azure Devops Server | 2025-01-01 | 7.1 High |
| Azure DevOps Server Cross-Site Scripting Vulnerability | ||||
| CVE-2023-21703 | 1 Microsoft | 3 Azure Data Box, Azure Data Box Gateway, Azure Stack Edge | 2025-01-01 | 6.5 Medium |
| Azure Data Box Gateway Remote Code Execution Vulnerability | ||||
| CVE-2023-23382 | 1 Microsoft | 1 Azure Machine Learning | 2025-01-01 | 6.5 Medium |
| Azure Machine Learning Compute Instance Information Disclosure Vulnerability | ||||
| CVE-2023-21777 | 1 Microsoft | 2 Azure App Service On Azure Stack, Azure Stack Hub | 2025-01-01 | 8.7 High |
| Azure App Service on Azure Stack Hub Elevation of Privilege Vulnerability | ||||
| CVE-2023-21553 | 1 Microsoft | 1 Azure Devops Server | 2025-01-01 | 7.5 High |
| Azure DevOps Server Remote Code Execution Vulnerability | ||||
| CVE-2023-21531 | 1 Microsoft | 1 Azure Service Fabric | 2025-01-01 | 7 High |
| Azure Service Fabric Container Elevation of Privilege Vulnerability | ||||
| CVE-2024-38194 | 1 Microsoft | 1 Azure Web Apps | 2024-12-31 | 8.4 High |
| An authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network. | ||||
| CVE-2024-43470 | 1 Microsoft | 2 Azure Network Watcher Agent, Azure Network Watcher Agent For Windows | 2024-12-31 | 7.3 High |
| Azure Network Watcher VM Agent Elevation of Privilege Vulnerability | ||||
| CVE-2024-43469 | 1 Microsoft | 1 Azure Cyclecloud | 2024-12-31 | 8.8 High |
| Azure CycleCloud Remote Code Execution Vulnerability | ||||
| CVE-2024-38188 | 1 Microsoft | 2 Azure Network Watcher Agent, Azure Network Watcher Agent For Windows | 2024-12-31 | 7.1 High |
| Azure Network Watcher VM Agent Elevation of Privilege Vulnerability | ||||
| CVE-2024-38220 | 1 Microsoft | 1 Azure Stack Hub | 2024-12-31 | 9 Critical |
| Azure Stack Hub Elevation of Privilege Vulnerability | ||||
| CVE-2024-38216 | 1 Microsoft | 1 Azure Stack Hub | 2024-12-31 | 8.2 High |
| Azure Stack Hub Elevation of Privilege Vulnerability | ||||
| CVE-2023-48315 | 1 Microsoft | 1 Azure Rtos Netx Duo | 2024-11-27 | 8.8 High |
| Azure RTOS NetX Duo is a TCP/IP network stack designed specifically for deeply embedded real-time and IoT applications. An attacker can cause remote code execution due to memory overflow vulnerabilities in Azure RTOS NETX Duo. The affected components include processes/functions related to ftp and sntp in RTOS v6.2.1 and below. The fixes have been included in NetX Duo release 6.3.0. Users are advised to upgrade. There are no known workarounds for this vulnerability. | ||||
| CVE-2024-25110 | 1 Microsoft | 1 Azure Uamqp | 2024-11-22 | 9.8 Critical |
| The UAMQP is a general purpose C library for AMQP 1.0. During a call to open_get_offered_capabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule with commit `30865c9c`. There are no known workarounds for this vulnerability. | ||||