CVE-2021-33762
published 2021-08-12CVE-2021-33762: Azure CycleCloud Elevation of Privilege Vulnerability
PriorityP338high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.47%
37.4th percentile
Azure CycleCloud Elevation of Privilege Vulnerability
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | azure_cyclecloud | — | — |
| microsoft | azure_cyclecloud | — | — |
| microsoft | azure_cyclecloud_7.9.10 | >= 7.0.0 < 7.9.19 | 7.9.19 |
| microsoft | azure_cyclecloud_8.2.0 | >= 8.0.0 < 8.2.0 | 8.2.0 |
| msrc | azure_cyclecloud_7.9.10 | — | — |
| msrc | azure_cyclecloud_8.2.0 | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
vendor_msrc7.0HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-96pp-c6hc-p26q: Azure CycleCloud Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-36943
ghsa_unreviewed·2022-05-24·CVSS 4.0
CVE-2021-33762 [MEDIUM] CWE-269 GHSA-96pp-c6hc-p26q: Azure CycleCloud Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-36943
Azure CycleCloud Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-36943.
GHSA
GHSA-85cp-839g-xmmq: Azure CycleCloud Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33762
ghsa_unreviewed·2022-05-24·CVSS 7.0
CVE-2021-36943 [HIGH] CWE-269 GHSA-85cp-839g-xmmq: Azure CycleCloud Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33762
Azure CycleCloud Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33762.
Microsoft
Azure CycleCloud Elevation of Privilege Vulnerability
vendor_msrc·2021-08-10·CVSS 7.0
CVE-2021-33762 [HIGH] Azure CycleCloud Elevation of Privilege Vulnerability
Azure CycleCloud Elevation of Privilege Vulnerability
Azure: Azure
Microsoft: Microsoft
Impact: Elevation of Privilege
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely;DOS:N/A
Remediation: Release Notes
Reference: https://docs.microsoft.com/en-us/azure/cyclecloud/packages?view=cyclecloud-8
No detection rules found.
No public exploits indexed.
2021-08-12
Published