Elevation of Privilege Vulnerability in Azure Portal by Microsoft
CVE-2025-53792

9.1CRITICAL

Key Information:

Vendor: Microsoft
Status: Azure Portal
Vendor: CVE Published:; 7 August 2025

What is CVE-2025-53792?

The Azure Portal is affected by a vulnerability that allows unauthorized users to gain elevated privileges. This vulnerability poses significant risks to user configurations and data security. Malicious actors may exploit the flaw to manipulate system settings or access sensitive information. Organizations utilizing the Azure Portal should apply the latest security patches and adhere to best practices to mitigate these risks. For more details, follow the vendor advisory.

Affected Version(s)

Azure Portal Unknown

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 7, 2025
Vulnerability Reserved
Jul 9, 2025