VDB

GCVE-110-CLOUD-2024-0028

GCVE-110-CLOUD-2024-0028
Advisory Published
Vulnetix · Advisory published July 15, 2024
Microsoft Defender for Cloud at one point provided customers with a flawed configuration template through their public GitHub repository. This template creates resources in the customer's AWS account so that Microsoft Defender for Cloud can scan it. In the rare cases in which this template was deployed, under certain, limited circumstances, Defender for Cloud's security findings for these AWS accounts could be disclosed to unauthorized third parties.

Affected Products

VendorProductVersionsPlatforms
AWSCloud Services
AWSConfig
AWSSES
AzureMicrosoft Defender for Cloud

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›