Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.1
CVSSv3

CVE-2019-0816

Published: 09/04/2019 Updated: 24/08/2020
CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4
CVSS v3 Base Score: 5.1 | Impact Score: 3.6 | Exploitability Score: 1.4
VMScore: 169
Vector: AV:L/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Canonical

Vulnerability Summary

A security feature bypass exists in Azure SSH Keypairs, due to a change in the provisioning logic for some Linux images that use cloud-init, aka 'Azure SSH Keypairs Security Feature Bypass Vulnerability'.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

canonical ubuntu_linux 18.04

Vendor Advisories

Red Hat: Moderate: cloud-init security update
Synopsis Moderate: cloud-init security update Type/Severity Security Advisory: Moderate Topic An update for cloud-init is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base sco ...
Debian CVElist Bug Report Logs: CVE-2019-0816
Debian Bug report logs - #926043 CVE-2019-0816 Package: cloud-init; Maintainer for cloud-init is Debian Cloud Team <debian-cloud@listsdebianorg>; Source for cloud-init is src:cloud-init (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Sat, 30 Mar 2019 19:15:01 UTC Severity: important Ta ...
Amazon Linux 2: ALAS2-2021-1595
A security feature bypass exists in Azure SSH Keypairs, due to a change in the provisioning logic for some Linux images that use cloud-init, aka 'Azure SSH Keypairs Security Feature Bypass Vulnerability' (CVE-2019-0816) ...

Recent Articles

Microsoft Patch Tuesday – March 2019
Symantec Threat Intelligence Blog • Ratheesh PM • 13 Mar 2024

This month the vendor has patched 64 vulnerabilities, 17 of which are rated Critical.

Posted: 13 Mar, 201920 Min ReadThreat Intelligence SubscribeFollowtwitterfacebooklinkedinMicrosoft Patch Tuesday – March 2019This month the vendor has patched 64 vulnerabilities, 17 of which are rated Critical.As always, customers are advised to follow these security best practices: Install vendor patches as soon as they are available. Run all software with the least privileges required while still maintaining functionality. Avoid handlin...

Read more...

References

CWE-706https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0816http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00018.htmlhttps://access.redhat.com/errata/RHSA-2019:0597https://nvd.nist.govhttps://alas.aws.amazon.com/AL2/ALAS-2021-1595.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook