Windows Azure SDK
by Microsoft
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-10749 | Med | 0.35 | 5.4 | 0.00 | Oct 24, 2025 | The Microsoft Azure Storage for WordPress plugin for WordPress is vulnerable to Unauthorized Arbitrary Media Deletion in all versions up to, and including, 4.5.1. This is due to missing capability checks on the 'azure-storage-media-replace' AJAX action. This makes it possible… | ||
| CVE-2024-21421 | 0.01 | — | 0.02 | Mar 12, 2024 | Azure SDK Spoofing Vulnerability | |||
| CVE-2011-1068 | 0.01 | — | 0.10 | Feb 23, 2011 | Microsoft Windows Azure Software Development Kit (SDK) 1.3.x before 1.3.20121.1237, when Full IIS and a Web Role are used with an ASP.NET application, does not properly support the use of cookies for maintaining state, which allows remote attackers to obtain potentially… | |||
| CVE-2024-38086 | 0.00 | — | 0.01 | Jul 9, 2024 | Azure Kinect SDK Remote Code Execution Vulnerability | |||
| CVE-2022-26907 | 0.00 | — | 0.02 | Apr 15, 2022 | Azure SDK for .NET Information Disclosure Vulnerability | |||
| CVE-2020-17002 | 0.00 | — | 0.03 | Dec 9, 2020 | Azure SDK for C Security Feature Bypass Vulnerability | |||
| CVE-2020-16971 | 0.00 | — | 0.04 | Dec 9, 2020 | Azure SDK for Java Security Feature Bypass Vulnerability |
- risk 0.35cvss 5.4epss 0.00
The Microsoft Azure Storage for WordPress plugin for WordPress is vulnerable to Unauthorized Arbitrary Media Deletion in all versions up to, and including, 4.5.1. This is due to missing capability checks on the 'azure-storage-media-replace' AJAX action. This makes it possible…
- CVE-2024-21421Mar 12, 2024risk 0.01cvss —epss 0.02
Azure SDK Spoofing Vulnerability
- CVE-2011-1068Feb 23, 2011risk 0.01cvss —epss 0.10
Microsoft Windows Azure Software Development Kit (SDK) 1.3.x before 1.3.20121.1237, when Full IIS and a Web Role are used with an ASP.NET application, does not properly support the use of cookies for maintaining state, which allows remote attackers to obtain potentially…
- CVE-2024-38086Jul 9, 2024risk 0.00cvss —epss 0.01
Azure Kinect SDK Remote Code Execution Vulnerability
- CVE-2022-26907Apr 15, 2022risk 0.00cvss —epss 0.02
Azure SDK for .NET Information Disclosure Vulnerability
- CVE-2020-17002Dec 9, 2020risk 0.00cvss —epss 0.03
Azure SDK for C Security Feature Bypass Vulnerability
- CVE-2020-16971Dec 9, 2020risk 0.00cvss —epss 0.04
Azure SDK for Java Security Feature Bypass Vulnerability