A vulnerability classified as critical has been found in Microsoft Azure Health Bot Service. This affects an unknown part of the component node.js. The manipulation leads to code injection.
It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.