CVE-2022-33674

4 documents4 sources
Severity
8.8HIGH
EPSS
0.5%
top 34.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Azure Site Recovery Vmware TO Azure
Timeline
PublishedJul 12
Latest updateJul 13

Description

Azure Site Recovery Elevation of Privilege Vulnerability

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:LExploitability: 2.8 | Impact: 5.5

Affected Packages2 packages

โ–ถCVEListV5microsoft/azure_site_recovery_vmware_to_azure9.0 โ€” 9.49

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-9r3v-4xr8-v35w: Azure Site Recovery Elevation of Privilege Vulnerabilityโ†—2022-07-13
โ–ถ
CVEList
Azure Site Recovery Elevation of Privilege Vulnerabilityโ†—2022-07-12
โ–ถ

๐Ÿ“‹Vendor Advisories

1
Microsoft
Azure Site Recovery Elevation of Privilege Vulnerabilityโ†—2022-07-12
โ–ถ
CVE-2022-33674 (HIGH CVSS 8.8) | Azure Site Recovery Elevation of Pr | cvebase.io