Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2026-2831
  • PyPI/azure-ai-agentserver-githubcopilot
 Malicious code in azure-ai-agentserver-githubcopilot (PyPI) 2 days ago
  • No fix available
MAL-2026-1985
  • PyPI/azure-eventhub-checkpointstoretable
 Malicious code in azure-eventhub-checkpointstoretable (PyPI) 20 Mar
  • No fix available
GHSA-hhfx-wfvq-7g9c
  • NuGet/Azure.Mcp
  • PyPI/msmcp-azure
  • npm/@azure/mcp
 Azure MCP Server has Server-Side Request Forgery issue that allows authorized attacker to elevate privileges over a network 10 Mar
  • Fix available
  • Severity - 8.8 (High)
GHSA-436v-jg82-p533
  • PyPI/azure-ai-language-conversations-authoring
 Azure AI Language Authoring Elevation of Privilege Vulnerability can Lead to RCE 10 Feb
  • Fix available
  • Severity - 9.8 (Critical)
GHSA-jm66-cg57-jjv5
  • PyPI/azure-core
 Azure Core is vulnerable to deserialization of untrusted data 13 Jan
  • Fix available
  • Severity - 7.5 (High)
MAL-2025-41622
  • PyPI/azure-iothub-service-client
 Malicious code in azure-iothub-service-client (PyPI) 28 Aug 2025
  • No fix available
MAL-2024-12211
  • PyPI/azure-projects
 Malicious code in azure-projects (PyPI) 23 Aug 2024
  • No fix available
GHSA-m5vv-6r4h-3vj9
  • Go/github.com/Azure/azure-sdk-for-go/sdk/azidentity
  • Maven/com.azure:azure-identity
  • Maven/com.microsoft.azure:msal4j
  • NuGet/Azure.Identity
  • NuGet/Microsoft.Identity.Client
  • ... 3 more
 Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability 11 Jun 2024
  • Fix available
  • Severity - 6.8 (Medium)
GHSA-47xc-9rr2-q7p4
  • PyPI/azure-cli
 Improper Control of Generation of Code ('Code Injection') in Azure CLI 25 Oct 2022
  • Fix available
  • Severity - 8.1 (High)
PYSEC-2022-43177
  • PyPI/azure-cli
 See record for full details 25 Oct 2022
  • Fix available
  • Severity - 9.8 (Critical)
GHSA-64x4-9hc6-r2h6
  • Maven/com.azure:azure-storage-blob
  • NuGet/Azure.Storage.Blobs
  • NuGet/Azure.Storage.Queues
  • PyPI/azure-storage-blob
  • PyPI/azure-storage-queue
 Microsoft: CBC Padding Oracle in Azure Blob Storage Encryption Library 13 Jul 2022
  • Fix available
  • Severity - 4.7 (Medium)