Lucene search
K
MicrosoftAzure Monitor Agent

13 matches found

CVE
CVE
added 2024/04/09 5:1 p.m.134 views

CVE-2024-29989

CVE-2024-29989 is an Azure Monitor Agent elevation-of-privilege vulnerability. Connected sources confirm affected product (Azure Monitor Agent), vulnerability class (elevation of privilege), and CVSSv3.1 base score 8.4 with LOCAL/LOW-complexity access, LOW privileges required, user interaction No...

8.4CVSS8.4AI score0.00748EPSS
CVE
CVE
added 2024/05/16 10:40 p.m.109 views

CVE-2024-30060

The connected PT-2024-3939 advisory identifies Microsoft Azure Monitor Agent as affected. Root cause is an incorrect reference count before accessing a file, enabling privilege escalation via a specially crafted link. Affected versions are not specified, and there is no information about a fix in...

7.8CVSS6.9AI score0.00493EPSS
CVE
CVE
added 2024/10/08 5:35 p.m.87 views

CVE-2024-38097

CVE-2024-38097 affects Microsoft Azure Monitor Agent. The vulnerability is an elevation of privilege in the Monitor Agent component, enabling local attacker with Low privileges and no user interaction to gain HIGH integrity and Privilege escalation on affected systems (local vector). Root cause d...

7.1CVSS7.1AI score0.00639EPSS
CVE
CVE
added 2024/06/11 5:0 p.m.79 views

CVE-2024-35254

CVE-2024-35254 is an Elevation of Privilege vulnerability in the Azure Monitor Agent . The CVSSv3.1 base score is 7.1 ( HIGH ), with a LOCAL attack vector, LOW attack complexity, LOW privileges required, and NO user interaction. The impact is Integrity: HIGH and Availability: HIGH ; Confidentiali...

7.1CVSS7.1AI score0.00819EPSS
CVE
CVE
added 2025/07/08 4:58 p.m.49 views

CVE-2025-47988

Azure Monitor Agent (Microsoft) is vulnerable to CVE-2025-47988 due to improper control of code generation, enabling remote code execution over an adjacent network. Connected sources confirm affected versions are older than 1.35.1 and describe the issue as remote code execution via code injection...

7.5CVSS7AI score0.00839EPSS
CVE
CVE
added 2025/10/14 5:1 p.m.36 views

CVE-2025-59285

Azure Monitor Agent (Microsoft) is affected by CVE-2025-59285: deserialization of untrusted data can allow an authorized attacker to elevate privileges locally. The issue targets the Azure Monitor Agent component and is documented across multiple sources, including MSRC updates and NVD entries. T...

7CVSS6.5AI score0.00711EPSS
CVE
CVE
added 2026/05/12 4:59 p.m.31 views

CVE-2026-42830

The CVE-2026-42830 entry concerns the Azure Monitor Agent Metrics Extension, where an untrusted search path leads to local privilege elevation for an authorized attacker. Reported impact is Privilege Escalation with High integrity impact, from the Azure Monitor Agent; CVSS 3.1 base score 6.5 (Loc...

6.5CVSS5.8AI score0.00474EPSS
CVE
CVE
added 2025/11/11 5:59 p.m.27 views

CVE-2025-59504

CVE-2025-59504 is a heap-based buffer overflow vulnerability in Microsoft’s Azure Monitor Agent. Connected sources identify the affected component as the Azure Monitor Agent (Windows), with exploitation possible when running versions prior to 1.37.1. The underlying issue is a heap-based buffer ov...

7.3CVSS6.2AI score0.0032EPSS
CVE
CVE
added 2025/10/14 5:0 p.m.26 views

CVE-2025-59494

CVE-2025-59494 corresponds to an elevation-of-privilege vulnerability in Microsoft Azure Monitor Agent (Azure Monitor Agent). The issue is described as improper access control that allows an authorized local attacker to elevate privileges. CVSS v3.1 base score 7.8 (High), with LOCAL attack, low a...

7.8CVSS6.5AI score0.00574EPSS
CVE
CVE
added 2026/04/14 4:57 p.m.23 views

CVE-2026-32168

CVE-2026-32168 concerns the Azure Monitor Agent. The connected sources confirm an elevated-privilege vulnerability caused by improper input validation, enabling an authorized attacker to obtain higher privileges locally. Affected components explicitly named include Azure Monitor Agent (and relate...

7.8CVSS5.7AI score0.00307EPSS
CVE
CVE
added 2025/12/09 5:55 p.m.22 views

CVE-2025-62550

The CVE-2025-62550 entry concerns Microsoft Azure Monitor Agent. Affected component: Azure Monitor Agent; vulnerability type: out-of-bounds write that enables remote code execution when exploited over a network by an authorized attacker. A connected Nessus plugin notes versions prior to 1.35.9 ar...

8.8CVSS7AI score0.00685EPSS
CVE
CVE
added 2026/04/14 4:57 p.m.21 views

CVE-2026-32192

Azure Monitor Agent is affected by a Deserialization of untrusted data vulnerability (CVE-2026-32192) that allows an authorized attacker to elevate privileges locally. Public sources describe the issue as an elevation of privilege in Azure Monitor Agent, linked to improper input validation during...

7.8CVSS5.7AI score0.01925EPSS
CVE
CVE
added 2026/05/12 4:58 p.m.16 views

CVE-2026-32204

Azure Monitor Agent is affected by CVE-2026-32204. The vulnerability involves external control of a file name or path in the agent, enabling an authorized, local attacker to elevate privileges. The CVE has a high impact (C:H, I:H, A:H) with local attack vector and low attack complexity, requiring...

7.8CVSS5.8AI score0.00285EPSS