Page 18 of 394 results (0.011 seconds)

CVSS: 5.5EPSS: 7%CPEs: 1EXPL: 0

CVE-2023-35394 – Azure HDInsight Jupyter Notebook Spoofing Vulnerability

https://notcve.org/view.php?id=CVE-2023-35394

08 Aug 2023 — Azure HDInsight Jupyter Notebook Spoofing Vulnerability Vulnerabilidad de suplantación de identidad de Jupyter Notebook en Azure HDInsight. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35394 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 7%CPEs: 1EXPL: 0

CVE-2023-35393 – Azure Apache Hive Spoofing Vulnerability

https://notcve.org/view.php?id=CVE-2023-35393

08 Aug 2023 — Azure Apache Hive Spoofing Vulnerability Vulnerabilidad de suplantación de identidad en Azure Apache Hive. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35393 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.5EPSS: 7%CPEs: 4EXPL: 0

CVE-2023-36869 – Azure DevOps Server Spoofing Vulnerability

https://notcve.org/view.php?id=CVE-2023-36869

08 Aug 2023 — Azure DevOps Server Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36869 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0

CVE-2023-36868 – Azure Service Fabric on Windows Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2023-36868

11 Jul 2023 — Azure Service Fabric on Windows Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36868 •

CVSS: 6.5EPSS: 9%CPEs: 3EXPL: 0

CVE-2023-21569 – Azure DevOps Server Spoofing Vulnerability

https://notcve.org/view.php?id=CVE-2023-21569

13 Jun 2023 — Azure DevOps Server Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21569 • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 7.5EPSS: 7%CPEs: 3EXPL: 0

CVE-2023-21565 – Azure DevOps Server Spoofing Vulnerability

https://notcve.org/view.php?id=CVE-2023-21565

13 Jun 2023 — Azure DevOps Server Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21565 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-35798 – Azure Arc Jumpstart Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2022-35798

18 May 2023 — Azure Arc Jumpstart Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35798 •

CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 1

CVE-2023-24513 – On affected platforms running Arista CloudEOS a size check bypass issue in the Software Forwarding Engine (Sfe) may allow buffer over reads in later code. Additionally, depending on configured options this may cause a recomputation of the TCP checksum ...

https://notcve.org/view.php?id=CVE-2023-24513

12 Apr 2023 — On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe) can lead to a potential denial of service attack by sending malformed packets to the switch. This causes a leak of packet buffers and if enough malformed packets are received, the switch may eventually stop forwarding traffic. • https://www.arista.com/en/support/advisories-notices/security-advisory/17240-security-advisory-0085 • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-28312 – Azure Machine Learning Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2023-28312

11 Apr 2023 — Azure Machine Learning Information Disclosure Vulnerability This vulnerability allows local attackers to disclose sensitive information on Microsoft Azure. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the DSIMountAgent service, which listens on TCP port 46802 by default. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage t... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28312 • CWE-284: Improper Access Control •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-28300 – Azure Service Connector Security Feature Bypass Vulnerability

https://notcve.org/view.php?id=CVE-2023-28300

11 Apr 2023 — Azure Service Connector Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28300 • CWE-284: Improper Access Control •