CNNVD-202508-1249 Information
CNNVD ID
CNNVD-202508-1249
Related CVE
- CNNVD Published: 2025-08-12
Description (Chinese)
Microsoft Azure Stack是美国微软(Microsoft)公司的一款基于Azure云平台的混合云计算软件解决方案。该产品支持构建和部署混合应用程序。 Microsoft Azure Stack存在路径遍历漏洞。攻击者利用该漏洞可以获取敏感信息。以下产品和版本受到影响:Azure Stack Hub 2406,Azure Stack Hub 2501,Azure Stack Hub 2408。
Description (English)
Microsoft Azure Stack is a hybrid cloud computing software solution based on the Azure cloud platform of Microsoft USA. The product supports the construction and deployment of hybrid applications. Microsoft Azure Stack has a loophole in its path. The attackers use that loophole to obtain sensitive information. The following products and versions were affected: Azure Stack Hub 2406, Azure Stack Hub 2501, Azure Stack Hub 2408.
Hazard Level
Medium
Vulnerability Type
路径遍历
Affected Vendor
微软
Published
2025-08-12
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53793 https://nvd.nist.gov/vuln/detail/CVE-2025-53793
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53793
Share on: