Vulnerabilities > Microsoft > Azure Automation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-24 | CVE-2021-42306 | Insufficiently Protected Credentials vulnerability in Microsoft products An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential? on an Azure AD Application or Service Principal (which is not recommended). | 8.1 |
| 2019-07-15 | CVE-2019-0962 | Unspecified vulnerability in Microsoft Azure Automation An elevation of privilege vulnerability exists in Azure Automation "RunAs account" runbooks for users with contributor role, aka 'Azure Automation Elevation of Privilege Vulnerability'. | 4.9 |