low

Public admin access to Azure's Red Hat Update Infrastructure

Published Sat, Nov 26th, 2016
Platforms

Summary

Full administrative access to the Azure Red Hat Enterprise Linux Appliance REST API was publicly exposed. It allowed malicious actors uploading packages that would be acquired by client virtual machines on their next yum update. The vulnerable infrastructure supplies all the packages for all Red Hat Enterprise Linux instances booted from the Azure marketplace.

Affected Services

N/A

Remediation

None required

Tracked CVEs

No tracked CVEs

References

Disclosure Date
Sat, Nov 26th, 2016
Exploitablity Period
-
Known ITW Exploitation
-
Detection Methods
-
Discovered by
Ian Duffy, null