漏洞描述
Microsoft Azure IoT是美国微软(Microsoft)公司的一个中心托管服务。用于 IoT 应用程序与其管理的设备之间的双向通信。 Microsoft Azure IoT存在资源管理错误漏洞。攻击者利用该漏洞可以远程执行代码。
Microsoft Azure IoT 资源管理错误漏洞
PoC代码
暂无相关漏洞推荐
- POC azure-custom-admin-role-unrestricted: Azure Subscription Administrator Custom Role Unrestricted Access
- POC azure-custom-owner-role-unrestricted: Azure Custom Owner Role Available
- POC azure-iam-role-resource-lock-unassigned: Azure IAM Role for Resource Locking Not Assigned
- POC azure-entra-id-guest-users-unmonitored: Azure Entra ID Guest Users Unmonitored
- POC azure-mfa-not-enabled-privileged-users: Azure MFA Not Enabled for All Privileged Users
- POC azure-db-mysql-delete-unalerted: Azure MySQL Database Delete Alert Not Configured
- POC azure-delete-lb-alert-unconfigured: Azure Delete Load Balancer Alert Not Configured
- POC azure-key-vault-delete-unalerted: Azure Key Vault Delete Alert Not Configured
- POC azure-keyvault-update-unalerted: Azure Key Vault Update Alert Not Configured
- POC azure-lb-create-update-missing: Azure Load Balancer Create or Update Alert Not Configured
- POC azure-mysql-db-update-unalerted: Azure MySQL Database Create/Update Alert Not Configured
- POC azure-nsg-create-update-unalerted: Azure Network Security Group Create/Update Alert Not Configured
- POC azure-nsg-delete-unalerted: Azure Network Security Group Delete Alert Not Configured