Open Borgquite opened 4 months ago
The script will downgrade an install of Azure Connected Machine Agent to the network share version, preventing updates from taking place:
https://github.com/Azure/ArcEnabledServersGroupPolicy/blob/4ab7424082c3ac7dda5fc9a7fe2f59a705fa2162/EnableAzureArc.ps1#L212
This could result in re-opening a security vulnerability if the machine has been updated e.g. by Microsoft Update or WSUS to a later version to mitigate against a flaw e.g. the following:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35624
Pull request incoming.
The script will downgrade an install of Azure Connected Machine Agent to the network share version, preventing updates from taking place:
https://github.com/Azure/ArcEnabledServersGroupPolicy/blob/4ab7424082c3ac7dda5fc9a7fe2f59a705fa2162/EnableAzureArc.ps1#L212
This could result in re-opening a security vulnerability if the machine has been updated e.g. by Microsoft Update or WSUS to a later version to mitigate against a flaw e.g. the following:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35624
Pull request incoming.