CVE-2023-36419

Azure HDInsight Apache Oozie Workflow Scheduler XXE Elevation of Privilege Vulnerability
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:microsoft:azure_hdinsights:-:*:*:*:*:*:*:*

History

29 May 2024, 02:16

Type Values Removed Values Added
CWE CWE-611

30 Nov 2023, 19:15

Type Values Removed Values Added
Summary Azure HDInsight Apache Oozie Workflow Scheduler Elevation of Privilege Vulnerability Azure HDInsight Apache Oozie Workflow Scheduler XXE Elevation of Privilege Vulnerability

13 Oct 2023, 18:31

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 8.8
v2 : unknown
v3 : 9.8
CWE NVD-CWE-noinfo
First Time Microsoft
Microsoft azure Hdinsights
CPE cpe:2.3:a:microsoft:azure_hdinsights:-:*:*:*:*:*:*:*
References (MISC) https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36419 - (MISC) https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36419 - Patch, Vendor Advisory

10 Oct 2023, 18:21

Type Values Removed Values Added
New CVE

Information

Published : 2023-10-10 18:15

Updated : 2024-05-29 02:16


NVD link : CVE-2023-36419

Mitre link : CVE-2023-36419

CVE.ORG link : CVE-2023-36419


JSON object : View

Products Affected

microsoft

  • azure_hdinsights
CWE
NVD-CWE-noinfo CWE-611

Improper Restriction of XML External Entity Reference