CVE-2020-16971 HIGH

CVE-2020-16971: Azure SDK for Java Security Feature Bypass Vulnerability

Vendor Microsoft

Product Azure SDK

Published December 9, 2020

Last update June 9, 2026

CVSS base score

7.4/10

Attack vector Network

Attack complexity High

Privileges required None

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C

What the vulnerability does

Description

Azure SDK for Java Security Feature Bypass Vulnerability

Key dates

December 9, 2020 CVE published

June 9, 2026 Record updated

CVE CVE-2020-16971

CVSS 7.4 / HIGH

Vendor Microsoft

Product Azure SDK

Affected ≥ 1.0.0 and < 1.6.0

Vendor Microsoft

Product Azure SDK for Java

Affected ≥ 1.0.0 and < publication