Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Azure_functions
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-04-30 | CVE-2025-33074 | Improper verification of cryptographic signature in Microsoft Azure Functions allows an authorized attacker to execute code over a network. | Azure_functions | 8.8 | ||
| 2024-11-26 | CVE-2024-49052 | Missing authentication for critical function in Microsoft Azure PolicyWatch allows an unauthorized attacker to elevate privileges over a network. | Azure_functions | 9.8 | ||
| 2020-10-16 | CVE-2020-16904 | <p>An elevation of privilege vulnerability exists in the way Azure Functions validate access keys.</p> <p>An unauthenticated attacker who successfully exploited this vulnerability could invoke an HTTP Function without proper authorization.</p> <p>This security update addresses the vulnerability by correctly validating access keys used to access HTTP Functions.</p> | Azure_functions | N/A | ||
| 2024-10-15 | CVE-2024-38204 | Improper Access Control in Imagine Cup allows an authorized attacker to elevate privileges over a network. | Azure_functions | 6.5 |