CVE-2024-2619309.04.2024, 17:15Azure Migrate Remote Code Execution VulnerabilityEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST6.4 MEDIUMADJACENT_NETWORKHIGHHIGHCVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:HmicrosoftCNA6.4 MEDIUMCVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:CCVEADP------CISA-ADPADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 56%VendorProductVersionmicrosoftazure_migrate𝑥< 6.1.294.1003𝑥= Vulnerable software versionsCommon Weakness EnumerationCWE-285 - Improper AuthorizationThe software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.Referenceshttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26193https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26193