ID
VAR-202111-0473
CVE
CVE-2021-41376
TITLE
Azure Sphere Vulnerability to disclose information in
Trust: 0.8
sources:
JVNDB: JVNDB-2021-004119
DESCRIPTION
Azure Sphere Information Disclosure Vulnerability. This vulnerability is CVE-2021-41374 and CVE-2021-41375 Is a different vulnerability.Information may be disclosed. Microsoft Azure Sphere is a device of Microsoft Corporation in the United States that is used in cloud environments to provide security protection. No detailed vulnerability details are currently provided
Trust: 2.16
sources:
NVD: CVE-2021-41376 //
JVNDB: JVNDB-2021-004119 //
CNVD: CNVD-2021-93384
IOT TAXONOMY
| category: | ['IoT'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2021-93384
AFFECTED PRODUCTS
| vendor: | microsoft | model: | azure sphere | scope: | lt | version: | 21.10 | Trust: 1.0 |
| vendor: | マイクロソフト | model: | azure sphere | scope: | eq | version: | - | Trust: 0.8 |
| vendor: | microsoft | model: | azure sphere | scope: | - | version: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2021-93384 //
JVNDB: JVNDB-2021-004119 //
NVD: CVE-2021-41376
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
CNVD: CNVD-2021-93384 //
JVNDB: JVNDB-2021-004119 //
CNNVD: CNNVD-202111-820 //
NVD: CVE-2021-41376 //
NVD: CVE-2021-41376
PROBLEMTYPE DATA
| problemtype: | NVD-CWE-noinfo | Trust: 1.0 |
| problemtype: | Lack of information (CWE-noinfo) [NVD Evaluation ] | Trust: 0.8 |
sources:
JVNDB: JVNDB-2021-004119 //
NVD: CVE-2021-41376
THREAT TYPE
local
Trust: 0.6
sources:
CNNVD: CNNVD-202111-820
TYPE
buffer error
Trust: 0.6
sources:
CNNVD: CNNVD-202111-820
PATCH
| title: | Azure Sphere Information Disclosure Vulnerability Security Update Guide | url: | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41376 | Trust: 0.8 |
| title: | Patch for Microsoft Azure Sphere buffer overflow vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/302236 | Trust: 0.6 |
| title: | Microsoft Azure Sphere Buffer error vulnerability fix | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=169557 | Trust: 0.6 |
sources:
CNVD: CNVD-2021-93384 //
JVNDB: JVNDB-2021-004119 //
CNNVD: CNNVD-202111-820
EXTERNAL IDS
| db: | NVD | id: | CVE-2021-41376 | Trust: 3.0 |
| db: | JVNDB | id: | JVNDB-2021-004119 | Trust: 0.8 |
| db: | CNVD | id: | CNVD-2021-93384 | Trust: 0.6 |
| db: | CS-HELP | id: | SB2021110912 | Trust: 0.6 |
| db: | TALOS | id: | TALOS-2021-1343 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-202111-820 | Trust: 0.6 |
sources:
CNVD: CNVD-2021-93384 //
JVNDB: JVNDB-2021-004119 //
CNNVD: CNNVD-202111-820 //
NVD: CVE-2021-41376
REFERENCES
| url: | https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2021-41376 | Trust: 1.6 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2021-41376 | Trust: 1.4 |
| url: | https://www.ipa.go.jp/security/ciadr/vul/20211110-ms.html | Trust: 0.8 |
| url: | https://www.jpcert.or.jp/at/2021/at210048.html | Trust: 0.8 |
| url: | https://msrc.microsoft.com/update-guide/vulnerability/cve-2021-41376 | Trust: 0.6 |
| url: | https://www.cybersecurity-help.cz/vdb/sb2021110912 | Trust: 0.6 |
| url: | https://talosintelligence.com/vulnerability_reports/talos-2021-1343 | Trust: 0.6 |
sources:
CNVD: CNVD-2021-93384 //
JVNDB: JVNDB-2021-004119 //
CNNVD: CNNVD-202111-820 //
NVD: CVE-2021-41376
CREDITS
Claudio Bozzato
Trust: 0.6
sources:
CNNVD: CNNVD-202111-820
SOURCES
| db: | CNVD | id: | CNVD-2021-93384 |
| db: | JVNDB | id: | JVNDB-2021-004119 |
| db: | CNNVD | id: | CNNVD-202111-820 |
| db: | NVD | id: | CVE-2021-41376 |
LAST UPDATE DATE
2024-08-14T13:43:14.944000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2021-93384 | date: | 2021-12-02T00:00:00 |
| db: | JVNDB | id: | JVNDB-2021-004119 | date: | 2021-11-15T08:48:00 |
| db: | CNNVD | id: | CNNVD-202111-820 | date: | 2021-11-11T00:00:00 |
| db: | NVD | id: | CVE-2021-41376 | date: | 2023-12-28T16:15:53.353 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2021-93384 | date: | 2021-12-02T00:00:00 |
| db: | JVNDB | id: | JVNDB-2021-004119 | date: | 2021-11-15T00:00:00 |
| db: | CNNVD | id: | CNNVD-202111-820 | date: | 2021-11-09T00:00:00 |
| db: | NVD | id: | CVE-2021-41376 | date: | 2021-11-10T01:19:31.483 |