PT-2025-42155 · Microsoft · Azure Monitor Agent

Published

2025-10-14

Updated

2025-10-14

CVE-2025-59494

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Azure Monitor Agent (affected versions not specified)

Description An improper access control issue exists in Azure Monitor Agent. An authorized attacker can elevate privileges locally.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

BDU:2025-13089

CVE-2025-59494

Azure Monitor Agent