CVE-2022-33663
published 2022-07-12CVE-2022-33663: Azure Site Recovery Elevation of Privilege Vulnerability
medium6.5CVSS 3.1
AVNACLPRHUINSUCNIHAH
Azure Site Recovery Elevation of Privilege Vulnerability
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| authlib | authlib | >= 0 < 1.3.1 | 1.3.1 |
| microsoft | azure_site_recovery_vmware_to_azure | < 9.49.6395.1 | 9.49.6395.1 |
| microsoft | azure_site_recovery_vmware_to_azure | >= 9.0 < 9.49 | 9.49 |
| msrc | azure_site_recovery_vmware_to_azure | — | — |
| python-jose_project | python-jose | >= 0 < 3.4.0 | 3.4.0 |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
ghsa7.5HIGH