CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 1CVE-2020-16985 – Azure Sphere Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-16985
11 Nov 2020 — Azure Sphere Information Disclosure Vulnerability Vulnerabilidad de Divulgación de Información de Azure Sphere Este ID de CVE es diferente de CVE-2020-16990 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16985 • CWE-908: Use of Uninitialized Resource •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 1CVE-2020-16986 – Azure Sphere Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2020-16986
11 Nov 2020 — Azure Sphere Denial of Service Vulnerability Vulnerabilidad de Denegación de Servicio de Azure Sphere • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16986 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2020-16983 – Azure Sphere Tampering Vulnerability
https://notcve.org/view.php?id=CVE-2020-16983
11 Nov 2020 — Azure Sphere Tampering Vulnerability Vulnerabilidad de Manipulación de Azure Sphere • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16983 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-16984 – Azure Sphere Unsigned Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-16984
11 Nov 2020 — Azure Sphere Unsigned Code Execution Vulnerability Vulnerabilidad de Ejecución de Código Sin Firmar de Azure Sphere Esta ID de CVE es diferente de CVE-2020-16970, CVE-2020-16982, CVE-2020-16987, CVE-2020-16991, CVE-2020-16994 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16984 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2020-16981 – Azure Sphere Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2020-16981
11 Nov 2020 — Azure Sphere Elevation of Privilege Vulnerability Vulnerabilidad de Elevación de Privilegios de Azure Sphere Este ID de CVE es diferente de CVE-2020-16988, CVE-2020-16989, CVE-2020-16992, CVE-2020-16993 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16981 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 2CVE-2020-16982 – Azure Sphere Unsigned Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-16982
11 Nov 2020 — Azure Sphere Unsigned Code Execution Vulnerability Vulnerabilidad de Ejecución de Código Sin Firmar de Azure Sphere Unsigned Code Execution Vulnerability Este ID de CVE es diferente de CVE-2020-16970, CVE-2020-16984, CVE-2020-16987, CVE-2020-16991, CVE-2020-16994 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16982 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-16970 – Azure Sphere Unsigned Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-16970
11 Nov 2020 — Azure Sphere Unsigned Code Execution Vulnerability Vulnerabilidad de ejecución de código sin firmar de Azure Sphere Esta ID de CVE es diferente de CVE-2020-16982, CVE-2020-16984, CVE-2020-16987, CVE-2020-16991, CVE-2020-16994. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16970 • CWE-415: Double Free •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2020-16904 – Azure Functions Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2020-16904
16 Oct 2020 —
An elevation of privilege vulnerability exists in the way Azure Functions validate access keys.
An unauthenticated attacker who successfully exploited this vulnerability could invoke an HTTP Function without proper authorization.
This security update addresses the vulnerability by correctly validating access keys used to access HTTP Functions.
Se presenta una vulnerabilidad de escalada de privilegios en la manera que Azure Functions comprueba claves de acceso. Un atacante no autenticado... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16904 • CWE-863: Incorrect Authorization •CVSS: 9.3EPSS: 0%CPEs: 7EXPL: 0CVE-2020-1416
https://notcve.org/view.php?id=CVE-2020-1416
14 Jul 2020 — An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies, aka 'Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability'. Se presenta una vulnerabilidad de elevación de privilegios en Visual Studio y Visual Studio Code cuando cargan dependencias de software, también se conoce como "Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability' • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1416 • CWE-269: Improper Privilege Management •
CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0CVE-2020-1326
https://notcve.org/view.php?id=CVE-2020-1326
14 Jul 2020 — A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'. Se presenta una vulnerabilidad de tipo Cross-site Scripting (XSS) cuando Azure DevOps Server no sanea apropiadamente la entrada proporcionada por el usuario, también se conoce como "Azure DevOps Server Cross-site Scripting Vulnerability" • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1326 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •