Elevation of Privilege Vulnerability Affects Azure Identity Libraries
CVE-2024-35255

5.5MEDIUM

Key Information:

Vendor: Microsoft
Status: Azure Identity Library For .net; Microsoft Authentication Library; Azure Identity Library; Azure Identity Library For Java
Vendor: CVE Published:; 11 June 2024

What is CVE-2024-35255?

Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability

Azure Identity Library for .NET Unknown 1.0.0 < 1.11.4

Azure Identity Library for C++ Unknown 1.0.0 < 1.8.0

Azure Identity Library for Java Unknown 1.0.0 < 1.12.2

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet