CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2025-49752

CVSS 10.0v3.1pub. 2025-11-20upd. 2025-11-21

Azure Bastion Elevation of Privilege Vulnerability

🤖 AI Analysis
How it works

The vulnerability is classified as CWE-294 (Authentication Bypass by Capture-replay), meaning an attacker can intercept or replay authentication data or session tokens to bypass access control mechanisms. The attack vector is network-based, requires no privileges or user interaction, and the scope of impact extends beyond the boundaries of the attacked component (Scope: Changed). This means the effects of exploitation may extend beyond Azure Bastion itself and impact related resources.

Impact

Successful exploitation enables an attacker to obtain elevated privileges in the Azure environment, which may lead to unauthorized access to protected resources, their modification, or partial disruption of availability — with complete compromise of data confidentiality and integrity.

Mitigation & patch

Patches available from the vendor should be applied in accordance with references published by the Microsoft Security Response Center at: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49752. As a service managed by Microsoft, Azure Bastion may receive updates automatically on the platform side — it is recommended to verify the status in the Azure portal and monitor MSRC communications.

Who is affected

Microsoft Azure Bastion Developer — versions indicated in vendor references (Microsoft Security Response Center).

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
  • Microsoft Azure Bastion Developer

    APP
    Microsoft
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2026-8398CRITICAL9.3⚠ KEVPL ✓ten sam vendor

Atak na łańcuch dostaw DAEMON Tools Lite — trojanizacja instalatorów

CVE-2026-20963CRITICAL9.8⚠ KEVPL ✓ten sam vendor

RCE przez deserializację niezaufanych danych w Microsoft SharePoint Server

CVE-2025-59287CRITICAL9.8⚠ KEVPL ✓ten sam vendor

RCE w Windows Server Update Service (WSUS) — deserializacja danych

CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam vendor

Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty

CVE-2025-53770CRITICAL9.8⚠ KEVPL ✓ten sam vendor

RCE przez deserialization w Microsoft SharePoint Server (on-premises)