Elevation of Privilege Vulnerability in Azure Monitor by Microsoft
CVE-2025-62207

8.6HIGH

Key Information:

Vendor: Microsoft
Status: Azure Monitor Control Service
Vendor: CVE Published:; 20 November 2025

What is CVE-2025-62207?

The vulnerability in Azure Monitor allows users to gain elevated privileges, potentially leading to unauthorized access or control over sensitive resources. This issue highlights the importance of implementing stringent access controls and monitoring systems for potential security threats. Organizations utilizing Azure Monitor should review their configurations and ensure that appropriate security measures are in place to mitigate the risks associated with this vulnerability.

Affected Version(s)

Azure Monitor Control Service Unknown

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 20, 2025
Vulnerability Reserved
Oct 8, 2025

JSON