Improper authorization in Microsoft Azure Kubernetes Service allows an unauthorized attacker to elevate privileges over a network
The Microsoft Azure Kubernetes Service has an improper authorization vulnerability, allowing an attacker to elevate their privileges over the network. This means that an unauthorized user can potentially gain access to sensitive features or data, compromising the security of the system. The vulnerability is exploitable over the network, making it a high-risk issue.
Improper authorization in Microsoft Azure Kubernetes Service allows an unauthorized attacker to elevate privileges over a network.
Organizations using Azure Kubernetes Service are at risk of privilege escalation, with a critical severity level due to the potential for unauthorized access to sensitive features or data.
Immediate Action Required
This vulnerability is critical and can be exploited with high impact.
What should I do?
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| microsoft | azure_kubernetes_service | - | - |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
Affected Products
1
References
microsoft / azure_kubernetes_service
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Exploitability
Impact