Lucene search
+L

148 matches found

Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.5 views

PT-2025-42146

Name of the Vulnerable Software and Affected Versions Azure Monitor Agent affected versions not specified Description An issue exists in Azure Monitor Agent where deserialization of untrusted data can allow an authorized attacker to elevate privileges locally. Recommendations At the moment, there...

7CVSS6.4AI score0.00727EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/14 12:0 a.m.5 views

Microsoft Azure Monitor Agent < 1.36.3 Elevation of Privilege (CVE-2025-59285)

The version of Microsoft Azure Monitor Agent installed on the remote host is prior to 1.36.3. It is, therefore, affected by a elevation of privilege vulnerability. Deserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate privileges locally. Note that Nessu...

7CVSS8.3AI score0.00727EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/14 12:0 a.m.5 views

Microsoft Azure Monitor Agent < 1.38.1.0 Elevation of Privilege (CVE-2025-59494)

The version of Microsoft Azure Monitor Agent installed on the remote host is prior to 1.38.1.0. It is, therefore, affected by a elevation of privilege vulnerability. Improper access control in Azure Monitor Agent allows an authorized attacker to elevate privileges locally. Note that Nessus has no...

7.8CVSS8.3AI score0.00587EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-20534

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00839EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-27997

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00493EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-37783

Malicious code in bioql PyPI...

7.1CVSS6.8AI score0.00644EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-35763

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00819EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-26961

Malicious code in bioql PyPI...

8.4CVSS8.8AI score0.00748EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/01 1:24 p.m.8 views

Security Bulletin: Vulnerabilities in IBM Java included with IBM Tivoli Composite Application Manager for Applications WebSphere MQ Monitoring Agent

Summary Vulnerabilities in IBM SDK Java Technology Edition that is shipped as part of agent framework in ITCAM for Applications WebSphere MQ Monitoring Agent. CVEs: CVE-2025-50106, CVE-2025-30749. Vulnerability Details CVEID:CVE-2025-50106 DESCRIPTION: Vulnerability in the Oracle Java SE, Oracle...

8.1CVSS6.7AI score0.01058EPSS
Exploits1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/11 12:0 a.m.11 views

The vulnerability of the data collection tool for Azure Monitor Agents, which operates on virtual machines and physical servers, stems from improper code generation. This allows attackers to execute arbitrary code.

Vulnerability of the data collection tool for Azure Monitor Agent, which processes virtual machines and physical servers, due to improper code generation management. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

7.5CVSS5.9AI score0.00839EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/07/10 5:18 p.m.5 views

CVE-2025-47988

Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network...

7.5CVSS6.8AI score0.00839EPSS
Exploits0References1
NCSC
NCSC
added 2025/07/08 6:24 p.m.6 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in Azure Service Fabric and Monitor Agent. A malicious person could exploit the vulnerabilities to grant themselves elevated privileges or to execute arbitrary code. Service Fabric: |----------------|------|-------------------------------------| | CVE ID | CVSS...

7.5CVSS7.1AI score0.00839EPSS
Exploits0
OSV
OSV
added 2025/07/08 5:15 p.m.3 views

CVE-2025-47988

Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network...

7.5CVSS6AI score0.00839EPSS
Exploits0References1
NVD
NVD
added 2025/07/08 5:15 p.m.7 views

CVE-2025-47988

Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network...

7.5CVSS0.00839EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/08 4:58 p.m.5 views

CVE-2025-47988 Azure Monitor Agent Remote Code Execution Vulnerability

...

7.5CVSS7.2AI score0.00839EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 4:58 p.m.49 views

CVE-2025-47988

Azure Monitor Agent (Microsoft) is vulnerable to CVE-2025-47988 due to improper control of code generation, enabling remote code execution over an adjacent network. Connected sources confirm affected versions are older than 1.35.1 and describe the issue as remote code execution via code injection...

7.5CVSS7AI score0.00839EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2025/07/08 2:0 p.m.10 views

Azure Monitor Agent Remote Code Execution Vulnerability

Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network...

7.5CVSS7AI score0.00839EPSS
Exploits0
Kaspersky
Kaspersky
added 2025/07/08 12:0 a.m.8 views

KLA85524 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Azure Monitor Agent can be exploited remotely to execute...

7.5CVSS8.4AI score0.00839EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.3 views

PT-2025-28522 · Microsoft · Azure Monitor Agent

Name of the Vulnerable Software and Affected Versions: Azure Monitor Agent affected versions not specified Description: The issue is related to improper control of generation of code, also known as 'code injection', in Azure Monitor Agent. This allows an unauthorized attacker to execute code over...

7.5CVSS6.4AI score0.00839EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/07/08 12:0 a.m.7 views

Microsoft Azure Monitor Agent < 1.35.1 Remote Code Execution (CVE-2025-47988)

The version of Microsoft Azure Monitor Agent installed on the remote host is prior to 1.35.1. It is, therefore, affected by a remote code execution vulnerability: - Improper control of generation of code 'code injection' in Azure Monitor Agent allows an unauthorized attacker to execute code over ...

7.5CVSS6.5AI score0.00839EPSS
Exploits0References2
Rows per page
Query Builder