CVE-2025-49752

Azure Bastion Elevation of Privilege Vulnerability...

EUVD-2025-198370

Azure Bastion Elevation of Privilege Vulnerability...

CVE-2025-49752

Azure Bastion Elevation of Privilege Vulnerability...

CVE-2025-49752 Azure Bastion Elevation of Privilege Vulnerability

...

CVE-2025-49752

Azure Bastion Elevation of Privilege Vulnerability...

CVE-2025-49752 Azure Bastion Elevation of Privilege Vulnerability

...

CVE-2025-49752

CVE-2025-49752 notes an Elevation of Privilege in Microsoft Azure Bastion. The vulnerability enables an authentication bypass via capture-replay attacks, with the underlying impact described as high confidentiality and integrity risk and low availability risk. Affected are Azure Bastion versions ...

Azure Bastion Elevation of Privilege Vulnerability

...

KLA90450 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Application Gateway can be exploited remotely to gain privileges. 2. An elevatio...

Microsoft Azure Bastion 安全漏洞

Microsoft Azure Bastion is a hosted PaaS service from Microsoft Corporation, USA. A security vulnerability exists in Microsoft Azure Bastion that stems from elevation of privilege...

PT-2025-47641

Name of the Vulnerable Software and Affected Versions Azure Bastion versions prior to November 20, 2025 Description A critical elevation of privilege flaw impacts Azure Bastion. Attackers can potentially gain higher permissions through capture-replay attacks if the system is unpatched. This allow...

Severe Vulnerabilities Reported in Microsoft Azure Bastion and Container Registry

Two "dangerous" security vulnerabilities have been disclosed in Microsoft Azure Bastion and Azure Container Registry that could have been exploited to carry out cross-site scripting XSS attacks. "The vulnerabilities allowed unauthorized access to the victim's session within the compromised Azure...

Microsoft mitigates set of cross-site scripting (XSS) vulnerabilities in Azure Bastion and Azure Container Registry

Summary Summary Microsoft recently mitigated a set of cross-site scripting vulnerabilities affecting Azure Bastion and Azure Container Registry ACR. Exploitation of these vulnerabilities could have potentially allowed for an unauthorized user to gain access to a target users session within the...

Deploy Jenkins Serverless-ly in Azure Services

Get a how-to guide on deploying Jenkins serverless-ly and securely utilizing Microsoft® Azure®-hosted services with Azure Container Instances, Azure Files, and Azure Bastion...