CVEDB API

Improper link resolution before file access ('link following') in Service Fabric allows an authorized attacker to elevate privileges locally.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.4%

CVSS Severity

CVSS v3 Score 6.0

References

Products affected by CVE-2025-21195

Microsoft » Azure Service Fabric » Version: N/A

cpe:2.3:a:microsoft:azure_service_fabric:-
Microsoft » Azure Service Fabric » Version: 10.0

cpe:2.3:a:microsoft:azure_service_fabric:10.0
Microsoft » Azure Service Fabric » Version: 10.1

cpe:2.3:a:microsoft:azure_service_fabric:10.1
Microsoft » Azure Service Fabric » Version: 8.2

cpe:2.3:a:microsoft:azure_service_fabric:8.2
Microsoft » Azure Service Fabric » Version: 9.0

cpe:2.3:a:microsoft:azure_service_fabric:9.0
Microsoft » Azure Service Fabric » Version: 9.1

cpe:2.3:a:microsoft:azure_service_fabric:9.1