Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
azure stack vulnerabilities and exploits
(subscribe to this query)
891
VMScore
CVE-2019-1372
An remote code execution vulnerability exists when Azure App Service/ Antares on Azure Stack fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability could allow an unprivileged function run by the user to execu...
Microsoft Azure App Service On Azure Stack
2 Github repositories
3 Articles
383
VMScore
CVE-2018-8600
A Cross-site Scripting (XSS) vulnerability exists when Azure App Services on Azure Stack does not properly sanitize user provided input, aka "Azure App Service Cross-site Scripting Vulnerability." This affects Azure App.
Microsoft Azure App Service On Azure Stack -
NA
CVE-2023-21777
Azure App Service on Azure Stack Hub Elevation of Privilege Vulnerability
Microsoft Azure App Service On Azure Stack -
446
VMScore
CVE-2019-1234
A spoofing vulnerability exists when Azure Stack fails to validate certain requests, aka 'Azure Stack Spoofing Vulnerability'.
Microsoft Azure Stack -
2 Github repositories
2 Articles
NA
CVE-2024-20679
Azure Stack Hub Spoofing Vulnerability
Microsoft Azure Stack Hub
NA
CVE-2023-21703
Azure Data Box Gateway Remote Code Execution Vulnerability
Microsoft Azure Stack Edge -
Microsoft Azure Data Box Gateway -
NA
CVE-2022-37968
<p>Microsoft has identified a vulnerability affecting the cluster connect feature of Azure Arc-enabled Kubernetes clusters. This vulnerability could allow an unauthenticated user to elevate their privileges and potentially gain administrative control over the Kubernetes clu...
Microsoft Azure Stack Edge -
Microsoft Azure Arc-enabled Kubernetes 1.5.8
Microsoft Azure Arc-enabled Kubernetes 1.6.19
Microsoft Azure Arc-enabled Kubernetes 1.7.18
Microsoft Azure Arc-enabled Kubernetes 1.8.11
1 Article
674
VMScore
CVE-2021-38647
Open Management Infrastructure Remote Code Execution Vulnerability
Microsoft System Center Operations Manager -
Microsoft Azure Automation State Configuration -
Microsoft Azure Automation Update Management -
Microsoft Azure Diagnostics \\(lad\\) -
Microsoft Azure Open Management Infrastructure -
Microsoft Azure Security Center -
Microsoft Azure Sentinel -
Microsoft Azure Stack Hub -
Microsoft Container Monitoring Solution -
Microsoft Log Analytics Agent -
22 Github repositories
2 Articles
410
VMScore
CVE-2021-38648
Open Management Infrastructure Elevation of Privilege Vulnerability
Microsoft System Center Operations Manager -
Microsoft Azure Automation State Configuration -
Microsoft Azure Automation Update Management -
Microsoft Azure Diagnostics \\(lad\\) -
Microsoft Azure Open Management Infrastructure -
Microsoft Azure Security Center -
Microsoft Azure Sentinel -
Microsoft Azure Stack Hub -
Microsoft Container Monitoring Solution -
Microsoft Log Analytics Agent -
2 Github repositories
410
VMScore
CVE-2021-38649
Open Management Infrastructure Elevation of Privilege Vulnerability
Microsoft System Center Operations Manager -
Microsoft Azure Automation State Configuration -
Microsoft Azure Automation Update Management -
Microsoft Azure Diagnostics \\(lad\\) -
Microsoft Azure Open Management Infrastructure -
Microsoft Azure Security Center -
Microsoft Azure Sentinel -
Microsoft Azure Stack Hub -
Microsoft Container Monitoring Solution -
Microsoft Log Analytics Agent -
2 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »