CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 2CVE-2022-36063 – USBX Host CDC ECM integer underflow with buffer overflow
https://notcve.org/view.php?id=CVE-2022-36063
10 Oct 2022 — Azure RTOS USBx is a USB host, device, and on-the-go (OTG) embedded stack, fully integrated with Azure RTOS ThreadX and available for all Azure RTOS ThreadX–supported processors. Azure RTOS USBX implementation of host support for USB CDC ECM includes an integer underflow and a buffer overflow in the `_ux_host_class_cdc_ecm_mac_address_get` function which may be potentially exploited to achieve remote code execution or denial of service. Setting mac address string descriptor length to a `0` or `1` allows an ... • https://github.com/azure-rtos/usbx/blob/master/common/usbx_host_classes/src/ux_host_class_cdc_ecm_mac_address_get.c#L264 • CWE-121: Stack-based Buffer Overflow CWE-191: Integer Underflow (Wrap or Wraparound) CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-38007 – Azure Guest Configuration and Azure Arc-enabled servers Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-38007
13 Sep 2022 — Azure Guest Configuration and Azure Arc-enabled servers Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Azure Guest Configuration and Azure Arc-enabled servers • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38007 •
CVSS: 8.3EPSS: 1%CPEs: 1EXPL: 0CVE-2022-35824 – Azure Site Recovery Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-35824
09 Aug 2022 — Azure Site Recovery Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Azure Site Recovery. Este ID de CVE es diferente de CVE-2022-35772 • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35824 •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2022-35821 – Azure Sphere Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-35821
09 Aug 2022 — Azure Sphere Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información en Azure Sphere • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35821 •
CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0CVE-2022-35819 – Azure Site Recovery Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35819
09 Aug 2022 — Azure Site Recovery Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Azure Site Recovery. Este ID de CVE es diferente de CVE-2022-35774, CVE-2022-35775, CVE-2022-35780, CVE-2022-35781, CVE-2022-35782, CVE-2022-35783, CVE-2022-35784, CVE-2022-35784, CVE-2022-35785, CVE-2022-35785, CVE-2022-35786, CVE-2022-35786, CVE-2022-35787, CVE-2022-35788, CVE-2022-35789, CVE-2022-35790, CVE-2022-35791, CVE-2022-35799, CVE-2022-35800, CVE-2022-35801, CVE-2022-35802, CVE-2022-35807, C... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35819 •
CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0CVE-2022-35818 – Azure Site Recovery Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35818
09 Aug 2022 — Azure Site Recovery Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Azure Site Recovery. Este ID de CVE es diferente de CVE-2022-35774, CVE-2022-35775, CVE-2022-35780, CVE-2022-35781, CVE-2022-35782, CVE-2022-35783, CVE-2022-35783, CVE-2022-35784, CVE-2022-35784, CVE-2022-35785, CVE-2022-35785, CVE-2022-35786, CVE-2022-35787, CVE-2022-35787, CVE-2022-35789, CVE-2022-35790, CVE-2022-35791, CVE-2022-35799, CVE-2022-35800, CVE-2022-35801, CVE-2022-35802, CVE-2022-35807, C... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35818 •
CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0CVE-2022-35817 – Azure Site Recovery Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35817
09 Aug 2022 — Azure Site Recovery Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Azure Site Recovery. Este ID de CVE es diferente de CVE-2022-35774, CVE-2022-35775, CVE-2022-35780, CVE-2022-35781, CVE-2022-35782, CVE-2022-35783, CVE-2022-35783, CVE-2022-35784, CVE-2022-35784, CVE-2022-35785, CVE-2022-35785, CVE-2022-35786, CVE-2022-35787, CVE-2022-35787, CVE-2022-35789, CVE-2022-35790, CVE-2022-35791, CVE-2022-35799, CVE-2022-35800, CVE-2022-35801, CVE-2022-35802, CVE-2022-35807, C... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35817 •
CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0CVE-2022-35816 – Azure Site Recovery Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35816
09 Aug 2022 — Azure Site Recovery Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Azure Site Recovery. Este ID de CVE es diferente de CVE-2022-35774, CVE-2022-35775, CVE-2022-35780, CVE-2022-35781, CVE-2022-35782, CVE-2022-35783, CVE-2022-35783, CVE-2022-35784, CVE-2022-35784, CVE-2022-35785, CVE-2022-35785, CVE-2022-35786, CVE-2022-35787, CVE-2022-35787, CVE-2022-35789, CVE-2022-35790, CVE-2022-35791, CVE-2022-35799, CVE-2022-35800, CVE-2022-35801, CVE-2022-35802, CVE-2022-35807, C... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35816 •
CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0CVE-2022-35815 – Azure Site Recovery Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35815
09 Aug 2022 — Azure Site Recovery Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Azure Site Recovery. Este ID de CVE es diferente de CVE-2022-35774, CVE-2022-35775, CVE-2022-35780, CVE-2022-35781, CVE-2022-35782, CVE-2022-35783, CVE-2022-35783, CVE-2022-35784, CVE-2022-35784, CVE-2022-355785, CVE-2022-35785, CVE-2022-35786, CVE-2022-35787, CVE-2022-35787, CVE-2022-35788 CVE-2022-35789, CVE-2022-35790 CVE-2022-35791, CVE-2022-35799, CVE-2022-35800, CVE-2022-35801, CVE-2022-35802, CV... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35815 •
CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0CVE-2022-35814 – Azure Site Recovery Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2022-35814
09 Aug 2022 — Azure Site Recovery Elevation of Privilege Vulnerability Una vulnerabilidad de Elevación de Privilegios en Azure Site Recovery. Este ID de CVE es diferente de CVE-2022-35774, CVE-2022-35775, CVE-2022-35780, CVE-2022-35781, CVE-2022-35782, CVE-2022-35783, CVE-2022-35783, CVE-2022-35784, CVE-2022-35784, CVE-2022-355785, CVE-2022-35785, CVE-2022-35786, CVE-2022-35787, CVE-2022-35787, CVE-2022-35788 CVE-2022-35789, CVE-2022-35790 CVE-2022-35791, CVE-2022-35799, CVE-2022-35800, CVE-2022-35801, CVE-2022-35802, CV... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35814 •