EUVD-2026-18558

Improper authentication in Azure SRE Agent allows an unauthorized attacker to disclose information over a network...

CVE-2026-32173 Azure SRE Agent Information Disclosure Vulnerability

...

CVE-2026-21224

Stack-based buffer overflow in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally...

CVE-2026-21224

Stack-based buffer overflow in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally...

CVE-2025-58724

Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally...

CVE-2025-47989

Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally...

EUVD-2025-6342

Malicious code in bioql PyPI...

CVE-2025-21199

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally...

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in several Azure products. A malicious person could exploit the vulnerabilities to grant themselves elevated privileges or execute arbitrary code with the privileges of the vulnerable application. Azure PromptFlow:...

CVE-2025-21199

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally...

CVE-2025-21199

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally...

CVE-2025-21199 Azure Agent Installer for Backup and Site Recovery Elevation of Privilege Vulnerability

...

CVE-2025-21199

Azure Agent Installer for Backup and Site Recovery is affected by CVE-2025-21199 due to improper privilege management, allowing an authorized attacker to elevate privileges locally. The issue targets the Azure Agent Installer component used for disaster recovery, with a CVSSv3.1 base score of 6.7...

CVE-2025-21199 Azure Agent Installer for Backup and Site Recovery Elevation of Privilege Vulnerability

...

Azure Agent Installer for Backup and Site Recovery Elevation of Privilege Vulnerability

Improper privilege management in Azure Agent Installer allows an authorized attacker to elevate privileges locally...

PT-2025-10796

Name of the Vulnerable Software and Affected Versions Azure Agent Installer affected versions not specified Description The issue is related to improper privilege management in the Azure Agent Installer, which allows an authorized attacker to elevate privileges locally. Recommendations At the...

Microsoft Azure 安全漏洞

Microsoft Azure Agent Installer for Backup and Site Recovery provides disaster recovery solutions for local computers and Azure VMs. An elevation of privilege vulnerability exists in Microsoft Azure Agent Installer for Backup and Site Recovery, which can be exploited by an attacker to elevate...

OPENSUSE-SU-2024:11217-1 python-azure-agent-2.2.49.2-4.5 on GA media

These are all security issues fixed in the python-azure-agent-2.2.49.2-4.5 package on the GA media of openSUSE Tumbleweed...

CVE-2023-35624

Azure Connected Machine Agent Elevation of Privilege Vulnerability...

SUSE SLES11 Security Update : python-azure-agent (SUSE-SU-2020:14454-1)

The remote SUSE Linux SLES11 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2020:14454-1 advisory. - An information disclosure vulnerability exists in the way Azure WaLinuxAgent creates swap files on resource disks, aka 'Azure Linux Agent Informatio...