The Azure CycleCloud product is missing security updates. It is, therefore, affected by the following vulnerability: A remote code execution vulnerability exists due to a disclosure of the storage credentials. An authenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands with root privileges. (CVE-2024-43469) Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version…Read More