394 results (0.004 seconds)

CVSS: 6.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2025-21188 – Azure Network Watcher VM Extension Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2025-21188

11 Feb 2025 — Azure Network Watcher VM Extension Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21188 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 9.9EPSS: 0%CPEs: 2EXPL: 0

CVE-2025-21415 – Azure AI Face Service Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2025-21415

29 Jan 2025 — Authentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21415 • CWE-290: Authentication Bypass by Spoofing •

CVSS: 8.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2024-49052 – Microsoft Azure PolicyWatch Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2024-49052

26 Nov 2024 — Missing authentication for critical function in Microsoft Azure PolicyWatch allows an unauthorized attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49052 • CWE-306: Missing Authentication for Critical Function •

CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0

CVE-2024-49060 – Azure Stack HCI Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2024-49060

15 Nov 2024 — Azure Stack HCI Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49060 • CWE-798: Use of Hard-coded Credentials •

CVSS: 8.3EPSS: 0%CPEs: 5EXPL: 0

CVE-2024-43613 – Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2024-43613

12 Nov 2024 — Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43613 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •

CVSS: 8.3EPSS: 0%CPEs: 5EXPL: 0

CVE-2024-49042 – Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2024-49042

12 Nov 2024 — Azure Database for PostgreSQL Flexible Server Extension Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49042 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •

CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0

CVE-2024-49021 – Microsoft SQL Server Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-49021

12 Nov 2024 — Microsoft SQL Server Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49021 • CWE-416: Use After Free •

CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0

CVE-2024-49018 – SQL Server Native Client Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-49018

12 Nov 2024 — SQL Server Native Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49018 • CWE-197: Numeric Truncation Error •

CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0

CVE-2024-49017 – SQL Server Native Client Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-49017

12 Nov 2024 — SQL Server Native Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49017 • CWE-122: Heap-based Buffer Overflow •

CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0

CVE-2024-49016 – SQL Server Native Client Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-49016

12 Nov 2024 — SQL Server Native Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49016 • CWE-416: Use After Free •