CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The vulnerability of the Azure Service Fabric distributed system, related to incorrect definition of the link before accessing the file, allows attackers to escalate their privileges.

The vulnerability of the Azure Service Fabric distributed system is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow attackers to increase their privileges...

6CVSS5.5AI score0.00323EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2025/07/10 5:18 p.m.•3 views

CVE-2025-21195

Improper link resolution before file access 'link following' in Service Fabric allows an authorized attacker to elevate privileges locally...

6CVSS6.3AI score0.00323EPSS

Exploits0References1

NCSC•added 2025/07/08 6:24 p.m.•3 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in Azure Service Fabric and Monitor Agent. A malicious person could exploit the vulnerabilities to grant themselves elevated privileges or to execute arbitrary code. Service Fabric: |----------------|------|-------------------------------------| | CVE ID | CVSS...

7.5CVSS7.1AI score0.00839EPSS

Exploits0

OSV•added 2025/07/08 5:15 p.m.•3 views

CVE-2025-21195

Improper link resolution before file access 'link following' in Service Fabric allows an authorized attacker to elevate privileges locally...

6CVSS5.8AI score0.00323EPSS

Exploits0References1

NVD•added 2025/07/08 5:15 p.m.•4 views

CVE-2025-21195

Improper link resolution before file access 'link following' in Service Fabric allows an authorized attacker to elevate privileges locally...

6CVSS0.00323EPSS

Exploits0References1

Cvelist•added 2025/07/08 4:57 p.m.•7 views

CVE-2025-21195 Azure Service Fabric Runtime Elevation of Privilege Vulnerability

...

6CVSS0.00323EPSS

Exploits0References1

Vulnrichment•added 2025/07/08 4:57 p.m.•4 views

CVE-2025-21195 Azure Service Fabric Runtime Elevation of Privilege Vulnerability

...

6CVSS7.2AI score0.00323EPSS

Exploits0References1

CVE•added 2025/07/08 4:57 p.m.•41 views

CVE-2025-21195

CVE-2025-21195 refers to an elevation-of-privilege flaw in Azure Service Fabric Runtime caused by improper link resolution before file access (link following). The vulnerability enables a locally authenticated attacker to elevate privileges on affected Service Fabric components. Connected sources...

6CVSS6.5AI score0.00323EPSS

Exploits0References1Affected Software1

Microsoft CVE•added 2025/07/08 2:0 p.m.•6 views

Azure Service Fabric Runtime Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in Service Fabric allows an authorized attacker to elevate privileges locally...

6CVSS6.6AI score0.00323EPSS

Exploits0

CNNVD•added 2025/07/08 12:0 a.m.•2 views

Microsoft Service Fabric 后置链接漏洞

Microsoft Service Fabric is a set of distributed systems platform from Microsoft USA. The platform is primarily used for packaging, deploying, and managing microservices and containers. Microsoft Service Fabric suffers from a backlink vulnerability. An attacker can exploit the vulnerability to...

6CVSS6.4AI score0.00323EPSS

Exploits0References1

Positive Technologies•added 2025/07/08 12:0 a.m.•2 views

PT-2025-28504 · Microsoft · Service Fabric

Name of the Vulnerable Software and Affected Versions: Service Fabric affected versions not specified Description: The issue concerns improper link resolution before file access, also known as 'link following', which allows an authorized attacker to elevate privileges locally. This could...

6CVSS6.2AI score0.00323EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by