漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An remote code execution vulnerability exists when Azure App Service/ Antares on Azure Stack fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability could allow an unprivileged function run by the user to execute code in the context of NT AUTHORITY\system thereby escaping the Sandbox.The security update addresses the vulnerability by ensuring that Azure App Service sanitizes user inputs., aka 'Azure App Service Remote Code Execution Vulnerability'.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Azure App Service on Azure Stack 缓冲区错误漏洞
Vulnerability Description
Microsoft Azure App Service on Azure Stack是美国微软(Microsoft)公司的一套平台即服务(PaaS)解决方案。该产品支持用户创建Web、API和Azure Functions应用等。 Microsoft Azure App Service on Azure Stack中存在缓冲区错误漏洞,该漏洞源于程序在将内存复制到缓冲区时,没有检查缓冲区的长度。攻击者可利用该漏洞造成沙盒逃逸。
CVSS Information
N/A
Vulnerability Type
N/A