Azure 漏洞列表
共找到 199 个与 Azure 相关的漏洞
- POC 2025-08-01azure-custom-admin-role-unrestricted: Azure Subscription Administrator Custom Role Unrestricted Access
- POC 2025-08-01azure-custom-owner-role-unrestricted: Azure Custom Owner Role Available
- POC 2025-08-01azure-iam-role-resource-lock-unassigned: Azure IAM Role for Resource Locking Not Assigned
- POC 2025-08-01azure-entra-id-guest-users-unmonitored: Azure Entra ID Guest Users Unmonitored
- POC 2025-08-01azure-mfa-not-enabled-privileged-users: Azure MFA Not Enabled for All Privileged Users
- POC 2025-08-01azure-db-mysql-delete-unalerted: Azure MySQL Database Delete Alert Not Configured
- POC 2025-08-01azure-delete-lb-alert-unconfigured: Azure Delete Load Balancer Alert Not Configured
- POC 2025-08-01azure-key-vault-delete-unalerted: Azure Key Vault Delete Alert Not Configured
- POC 2025-08-01azure-keyvault-update-unalerted: Azure Key Vault Update Alert Not Configured
- POC 2025-08-01azure-lb-create-update-missing: Azure Load Balancer Create or Update Alert Not Configured
- POC 2025-08-01azure-mysql-db-update-unalerted: Azure MySQL Database Create/Update Alert Not Configured
- POC 2025-08-01azure-nsg-create-update-unalerted: Azure Network Security Group Create/Update Alert Not Configured
- POC 2025-08-01azure-nsg-delete-unalerted: Azure Network Security Group Delete Alert Not Configured
- POC 2025-08-01azure-nsg-rule-delete-unalerted: Azure NSG Rule Delete Alert Not Configured
- POC 2025-08-01azure-nsg-rule-update-unalerted: Azure Network Security Group Rule Create/Update Alert Not Configured
- POC 2025-08-01azure-policy-assignment-create-alert-missing: Azure Policy Assignment Create Alert Not Configured
- POC 2025-08-01azure-policy-assignment-delete-unalerted: Azure Policy Assignment Delete Alert Not Configured
- POC 2025-08-01azure-postgresql-db-delete-unalerted: Azure PostgreSQL Database Delete Alert Not Configured
- POC 2025-08-01azure-postgresql-db-update-unalerted: Azure PostgreSQL Database Create/Update Alert Not Configured
- POC 2025-08-01azure-public-ip-delete-unalerted: Azure Public IP Delete Alert Not Configured
- POC 2025-08-01azure-public-ip-update-unalerted: Azure Public IP Create/Update Alert Not Configured
- POC 2025-08-01azure-security-policy-update-unalerted: Azure Update Security Policy Alert Not Configured
- POC 2025-08-01azure-security-solution-delete-unalerted: Azure Security Solution Delete Alert Not Configured
- POC 2025-08-01azure-security-solutions-update-unalerted: Azure Security Solutions Create/Update Alert Not Configured
- POC 2025-08-01azure-sql-database-rename-unalerted: Azure SQL Database Rename Alert Not Configured
- POC 2025-08-01azure-sql-db-update-unalerted: Azure SQL Database Create/Update Alert Not Configured
- POC 2025-08-01azure-sql-delete-db-unalerted: Azure SQL Delete Database Alert Not Configured
- POC 2025-08-01azure-sql-fw-rule-unalerted: Azure SQL Server Firewall Rule Create/Update/Delete Alert Not Configured
- POC 2025-08-01azure-storage-account-delete-unalerted: Azure Storage Account Delete Alert Not Configured
- POC 2025-08-01azure-storage-account-update-unalerted: Azure Storage Account Create/Update Alert Not Configured
- POC 2025-08-01azure-vm-create-update-unalerted: Azure VM Create/Update Alert Not Configured
- POC 2025-08-01azure-vm-deallocate-unalerted: Azure Virtual Machine Deallocate Alert Not Configured
- POC 2025-08-01azure-vm-delete-unalerted: Azure Virtual Machine Delete Alert Not Configured
- POC 2025-08-01azure-vm-poweroff-unalerted: Azure Virtual Machine Power Off Alert Not Configured
- POC 2025-08-01azure-openai-cmk-not-enabled: Azure OpenAI Encryption using Customer-Managed Keys Not Enabled
- POC 2025-08-01azure-openai-managed-identity-not-used: Azure OpenAI Service Instance Managed Identity Not Used
- POC 2025-08-01azure-openai-private-endpoints-unconfigured: Azure OpenAI Service Instances Not Using Private Endpoints
- POC 2025-08-01azure-openai-public-access-disabled: Azure OpenAI Public Network Access Not Disabled
- POC 2025-08-01azure-aks-api-unrestricted: Azure AKS API Server Access Unrestricted
- POC 2025-08-01azure-aks-api-version-not-latest: Azure AKS Kubernetes API Version Not Latest
- POC 2025-08-01azure-aks-cni-not-configured: Azure AKS Not Using CNI Mode
- POC 2025-08-01azure-aks-entra-id-unintegrated: Azure AKS Microsoft Entra ID Integration Not Configured
- POC 2025-08-01azure-aks-kubernetes-version-outdated: Azure AKS Kubernetes Version Not Latest
- POC 2025-08-01azure-aks-managed-identity-unassigned: Use System-Assigned Managed Identities for AKS Clusters
- POC 2025-08-01azure-aks-network-contrib-unassigned: Azure AKS Network Contributor Role Unassigned
- POC 2025-08-01azure-aks-not-user-assigned: Azure AKS Managed Identity Not User-Assigned
- POC 2025-08-01azure-aks-rbac-unconfigured: Azure AKS RBAC Not Enabled
- POC 2025-08-01azure-aks-use-private-kv: Azure AKS Encryption at Rest Not Using Private Key Vault
- POC 2025-08-01azure-apim-http2-not-enabled: Azure API Management HTTP/2 Support Not Enabled
- POC 2025-08-01azure-apim-https-enforcement-missing: Azure API Management HTTPS Enforcement Not Configured
- POC 2025-08-01azure-apim-nv-plaintext-exposure: Azure API Management Non-Encrypted Named Values Exposure
- POC 2025-08-01azure-apim-public-access-disabled: Azure API Management Public Network Access Disabled with Private Endpoint
- POC 2025-08-01azure-apim-resource-logs-not-configured: Azure API Management Service Resource Logs Not Configured
- POC 2025-08-01azure-apim-system-assigned-identity-unconfigured: Azure API Management Service System-Assigned Managed Identity Not Configured
- POC 2025-08-01azure-apim-tls-config-weak: Azure API Management Weak TLS Configured
- POC 2025-08-01azure-apim-user-assigned-id-not-used: Azure API Management User-Assigned Managed Identity Not Configured
- POC 2025-08-01azure-appservice-always-on-disabled: Azure App Service Always On Disabled
- POC 2025-08-01azure-appservice-auth-disabled: Azure App Service Authentication Not Enabled
- POC 2025-08-01azure-appservice-backup-not-enabled: Azure App Service Automated Backup Not Configured
- POC 2025-08-01azure-appservice-backup-retention-missing: Azure App Service Backup Retention Not Configured
- POC 2025-08-01azure-appservice-client-cert-disabled: Azure App Service Client Certificate Not Required
- POC 2025-08-01azure-appservice-entra-id-missing: Azure App Service Microsoft Entra ID Not Configured
- POC 2025-08-01azure-appservice-ftp-deployment-disabled: Azure App Service Plain FTP Deployment Disabled
- POC 2025-08-01azure-appservice-ftps-only-not-enabled: Azure App Service FTPS-Only Access Not Enabled
- POC 2025-08-01azure-appservice-http2-not-enabled: Azure App Service HTTP/2 Not Enabled
- POC 2025-08-01azure-appservice-https-only-not-enforced: Azure App Service HTTPS-Only Not Enforced
- POC 2025-08-01azure-appservice-insights-not-enabled: Azure App Service Application Insights Not Enabled
- POC 2025-08-01azure-appservice-remote-debugging-enabled: Azure App Service Remote Debugging Enabled
- POC 2025-08-01azure-appservice-tls-latest-version-missing: Azure App Service TLS Latest Version Not Configured
- POC 2025-08-01azure-cosmosdb-auto-failover-missing: Azure Cosmos DB Automatic Failover Not Enabled
- POC 2025-08-01azure-cosmosdb-default-network-access-unrestricted: Azure Cosmos DB Default Network Access Unrestricted
- POC 2025-08-01azure-functionapp-access-keys-missing: Azure Function Access Keys Configuration
- POC 2025-08-01azure-functionapp-admin-privileges: Azure Functions with Admin Privileges
- POC 2025-08-01azure-functionapp-appinsights-missing: Application Insights Integration for Azure Function Apps
- POC 2025-08-01azure-functionapp-public-exposure: Exposed Azure Functions
- POC 2025-08-01azure-functionapp-system-assigned-missing: System-Assigned Managed Identities for Azure Functions
- POC 2025-08-01azure-functionapp-user-assigned-id-missing: User-Assigned Managed Identities for Azure Functions
- POC 2025-08-01azure-functionapp-vnet-integration-missing: Virtual Network Integration for Azure Functions Not Enabled
- POC 2025-08-01azure-app-tier-cmk-untagged: Customer-Managed Key Not Tagged in Azure App Tier
- POC 2025-08-01azure-database-tier-cmk-absent: Customer-Managed Key Not Configured for Azure Database Tier
- POC 2025-08-01azure-keyvault-audit-not-enabled: Enable AuditEvent Logging for Azure Key Vaults
- POC 2025-08-01azure-keyvault-cert-keytype-unapproved: Unapproved Certificate Key Type in Azure Key Vaults
- POC 2025-08-01azure-keyvault-cert-transparency-missing: Missing Certificate Transparency in Azure Key Vaults
- POC 2025-08-01azure-keyvault-certificate-insufficient-autorenew: Check for Sufficient Certificate Auto-Renewal Period
- POC 2025-08-01azure-keyvault-network-unrestricted: Unrestricted Network Access to Azure Key Vaults
- POC 2025-08-01azure-keyvault-recoverability-unconfigured: Key Vault Recoverability Not Configured
- POC 2025-08-01azure-keyvault-ssl-autorenewal-missing: Missing SSL Certificate Auto-Renewal in Azure Key Vaults
- POC 2025-08-01azure-keyvault-trusted-ms-unrestricted: Key Vault Trusted Microsoft Services Access Not Configured
- POC 2025-08-01azure-keyvault-resource-lock-check: Azure KeyVault Resource Lock Not Enabled
- POC 2025-08-01azure-diag-logs-not-enabled: Diagnostic Logs Not Enabled for Azure Resources
- POC 2025-08-01azure-diagnostic-categories-misconfigured: Diagnostic Settings Categories on Azure Resources not configured
- POC 2025-08-01azure-log-profile-all-activities: Azure Log Profile Missing Critical Activity Categories
- POC 2025-08-01azure-monitor-diagnostic-unrestricted: Azure Monitor Diagnostic Settings for Subscription Activity Log Export Check
- POC 2025-08-01azure-network-watcher: Azure Network Watcher Service Not Enabled
- POC 2025-08-01azure-nic-ip-forwarding-check: Review Network Interfaces with IP Forwarding Enabled
- POC 2025-08-01azure-nsg-cifs-unrestricted: Unrestricted CIFS Access in Azure NSGs
- POC 2025-08-01azure-nsg-dns-unrestricted: Unrestricted DNS Access in Azure NSGs
- POC 2025-08-01azure-nsg-ftp-unrestricted: Unrestricted FTP Access in Azure NSGs
- POC 2025-08-01azure-nsg-http-unrestricted: Unrestricted TCP Port 80 Access in Azure NSGs
- POC 2025-08-01azure-nsg-https-unrestricted: Unrestricted HTTPS Access in Azure NSGs
- POC 2025-08-01azure-nsg-icmp-unrestricted: Unrestricted ICMP Access in Azure NSGs
- POC 2025-08-01azure-nsg-mongodb-unrestricted: Unrestricted MongoDB Access in Azure NSGs
- POC 2025-08-01azure-nsg-mssql-unrestricted: Unrestricted MS SQL Server Access in Azure NSGs
- POC 2025-08-01azure-nsg-mysql-unrestricted: Unrestricted MySQL Database Access in Azure NSGs
- POC 2025-08-01azure-nsg-netbios-unrestricted: Unrestricted NetBIOS Access in Azure NSGs
- POC 2025-08-01azure-nsg-postgresql-unrestricted: Unrestricted PostgreSQL Database Access in Azure NSGs
- POC 2025-08-01azure-nsg-rdp-unrestricted: Unrestricted RDP Access in Azure NSGs
- POC 2025-08-01azure-nsg-rpc-unrestricted: Unrestricted RPC Access in Azure NSGs
- POC 2025-08-01azure-nsg-smtp-unrestricted: Unrestricted SMTP Access in Azure NSGs
- POC 2025-08-01azure-nsg-ssh-unrestricted: Unrestricted SSH Access in Azure NSGs
- POC 2025-08-01azure-nsg-telnet-unrestricted: Unrestricted Telnet Access in Azure NSGs
- POC 2025-08-01azure-nsg-udp-unrestricted: Unrestricted UDP Access in Azure NSGs
- POC 2025-08-01azure-nsg-restricted-port-range: Restricted Port Range in Azure NSGs
- POC 2025-08-01azure-vnet-ddos-protection: Azure VNet DDoS Unprotected Check
- POC 2025-08-01azure-postgres-allow-azure-services-disabled: Azure PostgreSQL Access From Azure Services Disabled
- POC 2025-08-01azure-postgres-connection-throttling-disabled: Azure PostgreSQL Server Connection Throttling Disabled
- POC 2025-08-01azure-postgres-double-encryption-disabled: Azure PostgreSQL Single Server Double Encryption Not Enabled
- POC 2025-08-01azure-postgres-log-checkpoints-disabled: Azure PostgreSQL Flexible Server log_checkpoints Disabled
- POC 2025-08-01azure-postgres-log-connections-disabled: Azure PostgreSQL Log Connections Not Enabled
- POC 2025-08-01azure-postgres-log-disconnections-disabled: Azure PostgreSQL Log Disconnections Not Enabled
- POC 2025-08-01azure-postgres-log-duration-disabled: Azure PostgreSQL Log Duration Not Enabled
- POC 2025-08-01azure-postgresql-geo-backup-disabled: Azure PostgreSQL Geo-Redundant Backup Not Enabled
- POC 2025-08-01azure-postgresql-ssl-enforcement: Azure PostgreSQL SSL Enforcement Not Enabled
- POC 2025-08-01azure-postgresql-storage-autogrow-disabled: Azure PostgreSQL Storage Auto-Growth Disabled
- POC 2025-08-01azure-redis-nonssl-port-disabled: Azure Redis Cache In-Transit Encryption Not Enabled
- POC 2025-08-01azure-redis-tls-version-outdated: Azure Redis Cache TLS Version Not Latest
- POC 2025-08-01azure-search-service-managed-identity-disabled: Azure Search Service Managed Identity Not Enabled
- POC 2025-08-01azure-defender-auto-provisioning-disabled: Azure Defender for Cloud Automatic Provisioning Disabled
- POC 2025-08-01azure-servicebus-public-access-disabled: Azure Service Bus Public Network Access Disabled
- POC 2025-08-01azure-servicebus-tls-version-outdated: Azure Service Bus Namespace TLS Version Not Latest
- POC 2025-08-01azure-sql-auditing-disabled: Azure SQL Server Auditing Not Enabled
- POC 2025-08-01azure-sql-failover-not-enabled: Azure SQL Failover Groups Not Enabled
- POC 2025-08-01azure-sql-mi-tde-cmk-not-enabled: Azure SQL MI TDE Not Using Customer-Managed Keys
- POC 2025-08-01azure-sql-mi-tls-version-outdated: Azure SQL Managed Instance TLS Version Not Latest
- POC 2025-08-01azure-sql-tde-cmk-not-used: Azure SQL TDE Protector Not Using BYOK
- POC 2025-08-01azure-sql-tde-not-enabled: Azure SQL Transparent Data Encryption Not Enabled
- POC 2025-08-01azure-sql-va-emails-unconfigured: Azure SQL Classic VA Emails Unconfigured
- POC 2025-08-01azure-blob-anonymous-access-disabled: Azure Blob Anonymous Access Disabled
- POC 2025-08-01azure-blob-immutable-not-enabled: Azure Blob Immutable Storage Not Enabled
- POC 2025-08-01azure-blob-lifecycle-not-enabled: Azure Blob Storage Lifecycle Management Not Enabled
- POC 2025-08-01azure-blob-service-logging-disabled: Azure Storage Blob Service Logging Not Enabled
- POC 2025-08-01azure-blob-soft-delete-disabled: Azure Blob Storage Soft Delete Not Enabled
- POC 2025-08-01azure-storage-blob-public-access: Azure Storage Blob Public Access Not Disabled
- POC 2025-08-01azure-storage-byok-not-used: Azure Storage Account Not Using BYOK
- POC 2025-08-01azure-storage-cmk-not-used: Azure Storage Account Not Using CMK
- POC 2025-08-01azure-storage-cross-tenant-replication-disabled: Azure Storage Cross-Tenant Replication Disabled
- POC 2025-08-01azure-storage-encryption-missing: Azure Storage Infrastructure Encryption Not Enabled
- POC 2025-08-01azure-storage-min-tls-version: Azure Storage Minimum TLS Version Not Set to TLS1_2
- POC 2025-08-01azure-storage-network-unrestricted: Azure Storage Default Network Access Not Restricted
- POC 2025-08-01azure-storage-overly-permissive-sap: Azure Storage Overly Permissive Stored Access Policies
- POC 2025-08-01azure-storage-private-endpoint-unconfigured: Azure Storage Private Endpoint Not Configured
- POC 2025-08-01azure-storage-public-access: Azure Storage Publicly Accessible Web Containers
- POC 2025-08-01azure-storage-queue-logging-disabled: Azure Storage Queue Logging Not Enabled
- POC 2025-08-01azure-storage-secure-transfer: Azure Storage Secure Transfer Not Enabled
- POC 2025-08-01azure-storage-static-website-review: Azure Storage Static Website Configuration Review
- POC 2025-08-01azure-storage-table-logging-disabled: Azure Storage Table Logging Not Enabled
- POC 2025-08-01azure-storage-trusted-access-disabled: Azure Storage Trusted Microsoft Services Access Disabled
- POC 2025-08-01azure-budget-alerts-missing: Azure Budget Alerts Not Configured
- POC 2025-08-01azure-policy-not-allowed-types-unassigned: Azure Policy - Not Allowed Resource Types Policy Assignment Not in Use
- POC 2025-08-01azure-synapse-sqlpool-tde-disabled: Azure Synapse Analytics SQL Pool Transparent Data Encryption Not Enabled
- POC 2025-08-01azure-vm-tags-schema-noncompliant: Azure VM Tags Schema Non-compliant
- POC 2025-08-01azure-app-tier-vm-disk-unencrypted: Azure App-Tier VM Disk Encryption Not Enabled
- POC 2025-08-01azure-disk-encryption-unattached-volumes: Azure Disk Encryption Not Enabled for Unattached Disk Volumes
- POC 2025-08-01azure-lb-unused: Azure Unused Load Balancer Check
- POC 2025-08-01azure-vm-accelerated-networking-disabled: Azure VM Accelerated Networking Not Enabled
- POC 2025-08-01azure-vm-accelerated-networking-not-enabled: Azure VM Accelerated Networking Not Enabled
- POC 2025-08-01azure-vm-boot-diagnostics-not-enabled: Azure VM Boot Diagnostics Not Enabled
- POC 2025-08-01azure-vm-boot-disk-unencrypted: Azure VM Boot Disk Not Encrypted
- POC 2025-08-01azure-vm-byok-disk-volumes-not-enabled: Azure VM Disk Volumes BYOK Encryption Not Enabled
- POC 2025-08-01azure-vm-endpoint-protection-missing: Azure VM Endpoint Protection Not Installed
- POC 2025-08-01azure-vm-guest-diagnostics-unenabled: Azure VM Guest-Level Diagnostics Not Enabled
- POC 2025-08-01azure-vm-jit-access-not-enabled: Azure VM Just-In-Time Access Not Enabled
- POC 2025-08-01azure-vm-managed-identity-unassigned: Azure VM Managed Identity Not Assigned
- POC 2025-08-01azure-vm-performance-diagnostics-unenabled: Azure VM Performance Diagnostics Feature Not Enabled
- POC 2025-08-01azure-vm-ssh-auth-type: Azure VM SSH Authentication Type Not Using Keys
- POC 2025-08-01azure-vm-standard-ssd-required: Azure VM Premium SSD Not Required
- POC 2025-08-01azure-vm-trusted-launch-disabled: Azure VM Trusted Launch Not Enabled
- POC 2025-08-01azure-vm-unapproved-image: Azure VM Not Using Approved Image
- POC 2025-08-01azure-vm-unmanaged-disk-volumes: Azure VM Unmanaged Disk Volumes Detected
- POC 2025-08-01azure-vm-web-tier-disk-unencrypted: Azure VM Web-Tier Disk Volumes Not Encrypted
- POC 2025-08-01azure-vmss-auto-os-upgrade-missing: Azure VMSS Automatic OS Upgrade Not Enabled
- POC 2025-08-01azure-vmss-auto-repairs-disabled: Azure VMSS Automatic Instance Repairs Not Enabled
- POC 2025-08-01azure-vmss-empty-unattached: Azure Virtual Machine Scale Sets Empty and Unattached
- POC 2025-08-01azure-vmss-health-monitoring-missing: Azure VMSS Health Monitoring Not Enabled
- POC 2025-08-01azure-vmss-load-balancer-unassociated: Azure VMSS Load Balancer Unassociated
- POC 2025-08-01azure-vmss-public-ip-disabled: Azure VMSS Public IP Not Assigned
- POC 2025-08-01azure-vmss-termination-notif-disabled: Azure VMSS Instance Termination Notifications Disabled
- POC 2025-08-01azure-vmss-zone-redundancy-missing: Azure VMSS Zone-Redundant Configuration Not Enabled
- POC 2025-08-01azure-inno-csp-bypass: Content-Security-Policy Bypass - Azure Inno
- POC 2025-08-01azure-takeover-detection: Microsoft Azure Takeover Detection
- POC 2025-08-01azure-pipelines-exposed: Azure Pipelines Configuration File Disclosure
- POC 2025-08-01azuredeploy-json: Azure Resource Manager Template - File Exposure
- POC 2025-08-01metadata-service-azure: Microsoft Azure Cloud Metadata Service Check
- 2025-04-11Microsoft Azure 日志信息泄露漏洞
- 2024-08-17Microsoft Azure IoT 资源管理错误漏洞
- 2024-08-17Microsoft Azure IoT 资源管理错误漏洞
- 2024-08-17Microsoft Azure Stack 跨站脚本漏洞
- 2024-08-17Microsoft Azure Connected Machine Agent 后置链接漏洞
- 2022-10-11Microsoft多个产品权限管理不当漏洞(CVE-2022-37968)