CVE-2024-29993 — Improper Access Control in Microsoft Azure Cyclecloud 8.6.0

Severity

8.8HIGHNVD

EPSS

3.7%

top 12.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedApr 9

Description

Azure CycleCloud Elevation of Privilege Vulnerability

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

GHSA

GHSA-pg3r-pc9w-hjp2: Azure CycleCloud Elevation of Privilege Vulnerability↗2024-04-09

▶

CVEList

Azure CycleCloud Elevation of Privilege Vulnerability↗2024-04-09

▶

Microsoft

Azure CycleCloud Elevation of Privilege Vulnerability↗2024-04-09

▶