{"id":420862,"date":"2022-10-19T14:39:26","date_gmt":"2022-10-19T16:39:26","guid":{"rendered":"https:\/\/teknomers.com\/fr\/des-chercheurs-detaillent-la-faille-azure-sfx-qui-aurait-pu-permettre-aux-attaquants-dobtenir-un-acces-administrateur\/"},"modified":"2022-10-19T14:39:26","modified_gmt":"2022-10-19T16:39:26","slug":"des-chercheurs-detaillent-la-faille-azure-sfx-qui-aurait-pu-permettre-aux-attaquants-dobtenir-un-acces-administrateur","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/des-chercheurs-detaillent-la-faille-azure-sfx-qui-aurait-pu-permettre-aux-attaquants-dobtenir-un-acces-administrateur\/","title":{"rendered":"Des chercheurs d\u00e9taillent la faille Azure SFX qui aurait pu permettre aux attaquants d&#8217;obtenir un acc\u00e8s administrateur"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><img decoding=\"async\" alt=\"\" border=\"0\" data-original-height=\"380\" data-original-width=\"728\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/10\/Des-chercheurs-detaillent-la-faille-Azure-SFX-qui-aurait-pu.jpg\"\/><\/div>\n<p>Les chercheurs en cybers\u00e9curit\u00e9 ont partag\u00e9 plus de d\u00e9tails sur une faille de s\u00e9curit\u00e9 d\u00e9sormais corrig\u00e9e dans Azure Service Fabric Explorer (SFX) qui pourrait potentiellement permettre \u00e0 un attaquant d&#8217;obtenir des privil\u00e8ges d&#8217;administrateur sur le cluster.<\/p>\n<p>La vuln\u00e9rabilit\u00e9, suivie comme <a rel=\"nofollow noopener\" href=\"https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2022-35829\" target=\"_blank\">CVE-2022-35829<\/a>porte un indice de gravit\u00e9 CVSS de 6,2 et a \u00e9t\u00e9 trait\u00e9 par Microsoft dans le cadre de ses mises \u00e0 jour Patch Tuesday la semaine derni\u00e8re.<\/p>\n<div class=\"ad_two clear\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/strike-d\" target=\"_blank\" title=\"DevOps backupy\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/10\/Des-chercheurs-detaillent-la-faille-Azure-SFX-qui-aurait-pu.png\" width=\"300\" height=\"250\"\/><\/a><\/center><\/div>\n<p>Orca Security, qui <a rel=\"nofollow noopener\" href=\"https:\/\/orca.security\/resources\/blog\/fabrixss-vulnerability-azure-fabric-explorer\" target=\"_blank\">d\u00e9couvert et signal\u00e9<\/a> la faille au g\u00e9ant de la technologie le 11 ao\u00fbt 2022, surnomm\u00e9e la vuln\u00e9rabilit\u00e9 <strong>FabriXss<\/strong> (prononcez &#8220;tissus&#8221;).  Cela a un impact sur Azure Fabric Explorer version 8.1.316 et ant\u00e9rieure.<\/p>\n<p>SFX est d\u00e9crit par Microsoft comme un <a rel=\"nofollow noopener\" href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/service-fabric\/service-fabric-visualizing-your-cluster\" target=\"_blank\">outil open source<\/a> pour inspecter et g\u00e9rer <a rel=\"nofollow noopener\" href=\"https:\/\/azure.microsoft.com\/en-us\/products\/service-fabric\/#overview\" target=\"_blank\">Structure de services Azure<\/a> clusters, une plate-forme de syst\u00e8mes distribu\u00e9s utilis\u00e9e pour cr\u00e9er et d\u00e9ployer des applications cloud bas\u00e9es sur des microservices.<\/p>\n<div class=\"separator\" style=\"clear: both;\"><img decoding=\"async\" alt=\"\" border=\"0\" data-original-height=\"325\" data-original-width=\"728\" src=\"https:\/\/thehackernews.com\/new-images\/img\/b\/R29vZ2xl\/AVvXsEhlv6AcbH6jn-NIGnUXG3TWO9cCNMzXDiRP8ek0A2v-JjjKpWBDbHF0T2_zCD0BIIGmD6w4zpCTDGDqHPLQ4JPvLVgzMOWuxeZ3ywScMhF6jKNn4ypJShVSUfchScSpXSfWOVZ0FaUT9ajPZjDuQBm-GqzLg4n83nC0UaYwrMloG7RMp_JTnT_SAhck\/s728-e100\/1.jpg\"\/><\/div>\n<p>La vuln\u00e9rabilit\u00e9 est enracin\u00e9e dans le fait qu&#8217;un utilisateur avec <a rel=\"nofollow noopener\" href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/service-fabric\/service-fabric-cluster-fabric-settings#securityclientaccess\" target=\"_blank\">autorisations<\/a> pour &#8220;Cr\u00e9er une application de composition&#8221; via le client SFX peut tirer parti des privil\u00e8ges pour cr\u00e9er une application malveillante et abuser d&#8217;un script intersite stock\u00e9 (<a rel=\"nofollow noopener\" href=\"https:\/\/www.imperva.com\/learn\/application-security\/cross-site-scripting-xss-attacks\/\" target=\"_blank\">XSS<\/a>) faille dans le champ &#8220;Application name&#8221; pour glisser la charge utile.<\/p>\n<div class=\"ad_two clear\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/crowd-mid-d\" target=\"_blank\" title=\"CyberSecurity\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/10\/1666197565_619_Des-chercheurs-detaillent-la-faille-Azure-SFX-qui-aurait-pu.png\" width=\"728\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Arm\u00e9 de cet exploit, un adversaire peut envoyer l&#8217;entr\u00e9e sp\u00e9cialement con\u00e7ue lors de l&#8217;\u00e9tape de cr\u00e9ation de l&#8217;application, conduisant \u00e9ventuellement \u00e0 son ex\u00e9cution.<\/p>\n<div class=\"separator\" style=\"clear: both;\"><img decoding=\"async\" alt=\"\" border=\"0\" data-original-height=\"410\" data-original-width=\"728\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/10\/Des-chercheurs-detaillent-la-faille-Azure-SFX-qui-aurait-pu.gif\"\/><\/div>\n<p>&#8220;Cela inclut l&#8217;ex\u00e9cution d&#8217;une r\u00e9initialisation du n\u0153ud de cluster, qui efface tous les param\u00e8tres personnalis\u00e9s tels que les mots de passe et les configurations de s\u00e9curit\u00e9, permettant \u00e0 un attaquant de cr\u00e9er de nouveaux mots de passe et d&#8217;obtenir une pleine <a rel=\"nofollow noopener\" href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/service-fabric\/service-fabric-cluster-security-roles\" target=\"_blank\">Autorisations d&#8217;administrateur<\/a>&#8220;, ont d\u00e9clar\u00e9 Lidor Ben Shitrit et Roee Sagi, chercheurs d&#8217;Orca Security.<\/p>\n<p><\/p>\n<\/div>\n<p><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/10\/researchers-detail-azure-sfx-flaw-that.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Les chercheurs en cybers\u00e9curit\u00e9 ont partag\u00e9 plus de d\u00e9tails sur une faille de s\u00e9curit\u00e9 d\u00e9sormais corrig\u00e9e dans Azure Service Fabric Explorer (SFX) qui pourrait potentiellement permettre \u00e0 un attaquant d&#8217;obtenir des privil\u00e8ges d&#8217;administrateur sur le cluster. La vuln\u00e9rabilit\u00e9, suivie comme CVE-2022-35829porte un indice de gravit\u00e9 CVSS de 6,2 et a \u00e9t\u00e9 trait\u00e9 par Microsoft dans [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[15283,32959,11865,2514,507,21082,12848,4168,4158,4165,4161,133,38951,25573,9048,4157,4159,4171,4170,4167,4160,4163,4162,5848,364,4172,4169,117839,4166,4164],"class_list":["post-420862","post","type-post","status-publish","format-standard","hentry","category-technologie","tag-acces","tag-administrateur","tag-attaquants","tag-aurait","tag-aux","tag-azure","tag-chercheurs","tag-comment-pirater","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-des","tag-detaillent","tag-dobtenir","tag-faille","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-logiciel-malveillant-de-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-permettre","tag-qui","tag-securite-informatique","tag-securite-internet","tag-sfx","tag-violation-de-donnees","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/420862","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=420862"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/420862\/revisions"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=420862"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=420862"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=420862"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}