According to the CVSS metric, a successful exploitation could lead to a scope change (S:C). What does this mean for this vulnerability? In this situation a successful exploit could let attacker gain access to the network where the agent is installed which could lead to accessing to other assets in that network. How could an attacker exploit this vulnerability? An attacker who has performed the exploit successfully would be able to gain access to the installed agent and could perform remote code execution. According to the CVSS metric, the attack complexity is high (AC:H) and the privileges required is high (PR:H). What does this mean for this vulnerability? For a successful exploitation, the attacker would need some key information like ARMID and UUID of the installed agent as pre-requisite.
<a href="https://www.linkedin.com/in/shahar-zelig-931b5a82/">Shahar Zelig</a> with Microsoft, <a href="https://www.linkedin.com/in/oran-moyal-237821155/">Oran Moyal</a> with Microsoft