VDB

GCVE-110-CLOUD-2024-0055

GCVE-110-CLOUD-2024-0055
Advisory Published
Vulnetix · Advisory published January 1, 2024
Multiple vulnerabilities in Microsoft's Azure Health Bot service were discovered, allowing access to sensitive infrastructure and confidential medical data. Issues included sandbox escapes, unrestricted code execution, access to authentication secrets, cross-tenant data exposure, and unauthorized deletion of resources. Microsoft quickly patched the vulnerabilities and restructured the service architecture for improved security.

Affected Products

VendorProductVersionsPlatforms
AzureBot Service
AzureAzure Health Bot
AzureCloud Services

References

advisory

Browse GCVE Records

73,053 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›