CVE-2023-36877

MEDIUM4.5Cross-site scripting

JSON export Create alert

Description

Azure Apache Oozie Spoofing Vulnerability

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

None

E

Unchanged

RL

O

RC

Changed

Affected products

Microsoft / Azure HDInsight1.0 – 2307201242

References

VENDOR_ADVISORYhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36877