148 matches found
PT-2025-42146
Name of the Vulnerable Software and Affected Versions Azure Monitor Agent affected versions not specified Description An issue exists in Azure Monitor Agent where deserialization of untrusted data can allow an authorized attacker to elevate privileges locally. Recommendations At the moment, there...
Microsoft Azure Monitor Agent < 1.36.3 Elevation of Privilege (CVE-2025-59285)
The version of Microsoft Azure Monitor Agent installed on the remote host is prior to 1.36.3. It is, therefore, affected by a elevation of privilege vulnerability. Deserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate privileges locally. Note that Nessu...
Microsoft Azure Monitor Agent < 1.38.1.0 Elevation of Privilege (CVE-2025-59494)
The version of Microsoft Azure Monitor Agent installed on the remote host is prior to 1.38.1.0. It is, therefore, affected by a elevation of privilege vulnerability. Improper access control in Azure Monitor Agent allows an authorized attacker to elevate privileges locally. Note that Nessus has no...
EUVD-2025-20534
Malicious code in bioql PyPI...
EUVD-2024-27997
Malicious code in bioql PyPI...
EUVD-2024-37783
Malicious code in bioql PyPI...
EUVD-2024-35763
Malicious code in bioql PyPI...
EUVD-2024-26961
Malicious code in bioql PyPI...
Security Bulletin: Vulnerabilities in IBM Java included with IBM Tivoli Composite Application Manager for Applications WebSphere MQ Monitoring Agent
Summary Vulnerabilities in IBM SDK Java Technology Edition that is shipped as part of agent framework in ITCAM for Applications WebSphere MQ Monitoring Agent. CVEs: CVE-2025-50106, CVE-2025-30749. Vulnerability Details CVEID:CVE-2025-50106 DESCRIPTION: Vulnerability in the Oracle Java SE, Oracle...
The vulnerability of the data collection tool for Azure Monitor Agents, which operates on virtual machines and physical servers, stems from improper code generation. This allows attackers to execute arbitrary code.
Vulnerability of the data collection tool for Azure Monitor Agent, which processes virtual machines and physical servers, due to improper code generation management. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
CVE-2025-47988
Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network...
Vulnerabilities fixed in Microsoft Azure
Microsoft has fixed vulnerabilities in Azure Service Fabric and Monitor Agent. A malicious person could exploit the vulnerabilities to grant themselves elevated privileges or to execute arbitrary code. Service Fabric: |----------------|------|-------------------------------------| | CVE ID | CVSS...
CVE-2025-47988
Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network...
CVE-2025-47988
Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network...
CVE-2025-47988 Azure Monitor Agent Remote Code Execution Vulnerability
...
CVE-2025-47988
Azure Monitor Agent (Microsoft) is vulnerable to CVE-2025-47988 due to improper control of code generation, enabling remote code execution over an adjacent network. Connected sources confirm affected versions are older than 1.35.1 and describe the issue as remote code execution via code injection...
Azure Monitor Agent Remote Code Execution Vulnerability
Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network...
KLA85524 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Azure Monitor Agent can be exploited remotely to execute...
PT-2025-28522 · Microsoft · Azure Monitor Agent
Name of the Vulnerable Software and Affected Versions: Azure Monitor Agent affected versions not specified Description: The issue is related to improper control of generation of code, also known as 'code injection', in Azure Monitor Agent. This allows an unauthorized attacker to execute code over...
Microsoft Azure Monitor Agent < 1.35.1 Remote Code Execution (CVE-2025-47988)
The version of Microsoft Azure Monitor Agent installed on the remote host is prior to 1.35.1. It is, therefore, affected by a remote code execution vulnerability: - Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over ...