Skip to main content

Azure Migrate

3 CVEs product

Monthly

CVE-2024-30053 MEDIUM This Month

Azure Migrate Cross-Site Scripting Vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Microsoft Azure Migrate
NVD
CVSS 3.1
5.4
EPSS
1.0%
CVE-2024-26193 MEDIUM This Month

Azure Migrate Remote Code Execution Vulnerability. Rated medium severity (CVSS 6.4). No vendor patch available.

Authentication Bypass RCE Microsoft Azure Migrate
NVD
CVSS 3.1
6.4
EPSS
0.9%
CVE-2021-42306 HIGH PATCH This Week

An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential on an Azure AD Application. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. This Insufficiently Protected Credentials vulnerability could allow attackers to obtain user credentials due to weak protection mechanisms.

Microsoft Information Disclosure Azure Active Directory Azure Active Site Recovery Azure Automation +1
NVD
CVSS 3.1
8.1
EPSS
3.1%
EPSS 1% CVSS 5.4
MEDIUM This Month

Azure Migrate Cross-Site Scripting Vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Microsoft Azure Migrate
NVD
EPSS 1% CVSS 6.4
MEDIUM This Month

Azure Migrate Remote Code Execution Vulnerability. Rated medium severity (CVSS 6.4). No vendor patch available.

Authentication Bypass RCE Microsoft +1
NVD
EPSS 3% CVSS 8.1
HIGH PATCH This Week

An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential on an Azure AD Application. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. This Insufficiently Protected Credentials vulnerability could allow attackers to obtain user credentials due to weak protection mechanisms.

Microsoft Information Disclosure Azure Active Directory +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy