Multiple vulnerabilities in Microsoft Azure

Описание

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges.

Below is a complete list of vulnerabilities:

1. An information disclosure vulnerability in Azure Local Cluster can be exploited remotely to obtain sensitive information.
2. An elevation of privilege vulnerability in Azure Local can be exploited remotely to gain privileges.
3. An information disclosure vulnerability in Windows Admin Center in Azure Portal can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

• CVE-2025-26628
  CVE-2025-27489
  CVE-2025-25002
  CVE-2025-29819
  

Связанные продукты

• Microsoft-Windows
• Microsoft-Azure
• Azure-Stack-HCI

Список CVE

• CVE-2025-25002
  high
• CVE-2025-26628
  high
• CVE-2025-27489
  critical
• CVE-2025-29819
  high

Список KB

• 5055526

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com