KLA89270 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Monitor Agent can be exploited remotely to gain privileges. 2. An elevatio...

EUVD-2024-19041

Malicious code in bioql PyPI...

EUVD-2023-39625

Malicious code in bioql PyPI...

EUVD-2024-37135

Malicious code in bioql PyPI...

Security Updates for Azure Connected Machine Agent < 1.56 (September 2025)

The Microsoft Azure Connected Machine Agent installation on the remote host is missing security updates. It is, therefore, affected by an elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. Note that Nessus has not tested for this issue but has instead...

Security Updates for Azure Connected Machine Agent < 1.49

The Microsoft Azure Connected Machine Agent installation on the remote host is missing security updates. It is, therefore, affected by an elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. Note that Nessus has not tested for this issue but has instead...

CVE-2025-49692 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

CVE-2025-49692 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

CVE-2025-49692

CVE-2025-49692 describes an elevation of privilege vulnerability in the Azure Connected Machine Agent (Azure Windows Virtual Machine Agent). The issue is due to improper access control, allowing an authorized attacker with local access and low user interaction to gain total impact (high confident...

CVE-2025-55316 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

Microsoft Azure Connected Machine Agent 安全漏洞

Microsoft Azure Connected Machine Agent is a U.S.-based Microsoft Corporation's Microsoft ability to manage Windows and Linux computers hosted outside of Azure on a corporate network or other cloud provider. A security vulnerability exists in Microsoft Azure Connected Machine Agent. An attacker...

KLA87441 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Connected Machine...

Vulnerabilities fixed in Microsoft Azure components

Microsoft has fixed vulnerabilities in several Azure components. A malicious party can exploit the vulnerabilities to grant themselves elevated privileges or impersonate another user. For successful abuse, the malicious party needs prior access to the vulnerable environment, or the malicious part...

CVE-2024-38162

Azure Connected Machine Agent Elevation of Privilege Vulnerability...

CVE-2024-38162

Azure Connected Machine Agent Elevation of Privilege Vulnerability...

CVE-2024-38098

Azure Connected Machine Agent Elevation of Privilege Vulnerability...

CVE-2024-38162

CVE-2024-38162 concerns the Azure Connected Machine Agent with an Elevation of Privilege vulnerability. The CVSS 3.1 vector (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) indicates a local-exploit, low-privilege requirement leading to high impact on confidentiality, integrity, and availability. Multiple s...

CVE-2024-38162 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

CVE-2024-38162 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...

CVE-2024-38098 Azure Connected Machine Agent Elevation of Privilege Vulnerability

...