CVE-2022-35829

Published: 11/10/2022 Updated: 20/12/2023

CVSS v3 Base Score: 4.8 | Impact Score: 2.7 | Exploitability Score: 1.7

VMScore: 0

Service Fabric Explorer Spoofing Vulnerability

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft azure service fabric -

A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.

Awesome Azure Penetration Testing A curated list of useful tools and resources for penetration testing and securing Microsofts cloud platform Azure Table of Contents Tools Enumeration Information Gathering Lateral Movement Exploitation Credential Attacks Resources Articles Lists and Cheat Sheets Lab Exercises Talks & Videos Books Tips and Tricks Tools Enu

Tear in Microsoft Azure Service Fabric can give attackers full admin privileges

The Register

Topics Security Off-Prem On-Prem Software Offbeat Vendor Voice Vendor Voice Resources Orca Security disclosed the bug, and older versions remain vulnerable

A proof-of-concept exploit has been published detailing a spoofing vulnerability in Microsoft Azure Service Fabric. The flaw allows attackers to gain full administrator permissions and then perform any manner of malicious activity. Orca Security researcher Lidor Ben Shitrit found the bug and reported it to Microsoft, which released a partial fix for CVE-2022-35829 in its October Patch Tuesday. The vulnerability received a 6.4 CVSS score. There are two versions of Service Fabric Explorer. All new...

CVE-2022-35829

Vulnerability Summary

Vulnerability Trend

Github Repositories

Recent Articles

References

Vulmon Search

About

Products

Connect