CVE-2019-1372

Name of the Vulnerable Software and Affected Versions Azure App Service (affected versions not specified)

Description A remote code execution issue exists due to improper memory object handling in Azure App Service on Azure Stack. This allows an attacker to execute code in the context of NT AUTHORITYSYSTEM, potentially escaping the sandbox. The issue is addressed by sanitizing user inputs.

Recommendations For Azure App Service, ensure that the security update is applied to address the vulnerability by sanitizing user inputs. At the moment, there is no information about a newer version that contains a fix for this vulnerability.