Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Service allows an authorized attacker to perform spoofing with a physical attack.
Improper input validation in Azure Local allows an authorized attacker to elevate privileges locally.
Improper input validation in Azure Virtual Network Gateway allows an authorized attacker to execute code over a network.
Improper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a network.
Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
Improper authentication in Azure Bot Service allows an authorized attacker to elevate privileges over a network.
Improper neutralization of special elements in output used by a downstream component ('injection') in Azure Machine Learning allows an unauthorized attacker to perform spoofing over a network.
Improper input validation in Azure Compute Gallery allows an authorized attacker to disclose information over a network.
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally.
Improper access control in Azure Virtual Machines allows an authorized attacker to perform spoofing locally.
Improper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent network.
An unauthenticated remote attacker can exploit input validation in cmd services of the devices, allowing them to disrupt system operations and potentially cause a denial-of-service.
Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.
Improper neutralization of escape, meta, or control sequences in Microsoft Power Apps allows an authorized attacker to perform spoofing over a network.
Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.
Improper input validation in some Intel(R) SPS firmware before SPS_E5_06.01.04.059.0 may allow a privileged user to potentially enable denial of service via local access.
Improper input validation in Windows Hello allows an authorized attacker to bypass a security feature locally.
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical at
Improper authorization in Microsoft Azure Kubernetes Service allows an unauthorized attacker to elevate privileges over a network.
Page 1+ Next →