CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-24986

Improper isolation or compartmentalization in Azure PromptFlow allows an unauthorized attacker to execute code over a network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.0%

CVSS Severity

CVSS v3 Score 6.5

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24986

Products affected by CVE-2025-24986

Microsoft » Azure Promptflow Core » Version: 1.10.0

cpe:2.3:a:microsoft:azure_promptflow_core:1.10.0
Microsoft » Azure Promptflow Core » Version: 1.11.0

cpe:2.3:a:microsoft:azure_promptflow_core:1.11.0
Microsoft » Azure Promptflow Core » Version: 1.12.0

cpe:2.3:a:microsoft:azure_promptflow_core:1.12.0
Microsoft » Azure Promptflow Core » Version: 1.13.0

cpe:2.3:a:microsoft:azure_promptflow_core:1.13.0
Microsoft » Azure Promptflow Core » Version: 1.14.0

cpe:2.3:a:microsoft:azure_promptflow_core:1.14.0
Microsoft » Azure Promptflow Core » Version: 1.15.0

cpe:2.3:a:microsoft:azure_promptflow_core:1.15.0
Microsoft » Azure Promptflow Core » Version: 1.16.0

cpe:2.3:a:microsoft:azure_promptflow_core:1.16.0
Microsoft » Azure Promptflow Core » Version: 1.17.0

cpe:2.3:a:microsoft:azure_promptflow_core:1.17.0
Microsoft » Azure Promptflow Core » Version: 1.17.1

cpe:2.3:a:microsoft:azure_promptflow_core:1.17.1
Microsoft » Azure Promptflow Core » Version: 1.9.0

cpe:2.3:a:microsoft:azure_promptflow_core:1.9.0
Microsoft » Azure Promptflow Tools » Version: 1.0.0

cpe:2.3:a:microsoft:azure_promptflow_tools:1.0.0
Microsoft » Azure Promptflow Tools » Version: 1.0.1

cpe:2.3:a:microsoft:azure_promptflow_tools:1.0.1
Microsoft » Azure Promptflow Tools » Version: 1.0.2

cpe:2.3:a:microsoft:azure_promptflow_tools:1.0.2
Microsoft » Azure Promptflow Tools » Version: 1.0.3

cpe:2.3:a:microsoft:azure_promptflow_tools:1.0.3
Microsoft » Azure Promptflow Tools » Version: 1.1.0

cpe:2.3:a:microsoft:azure_promptflow_tools:1.1.0
Microsoft » Azure Promptflow Tools » Version: 1.2.0

cpe:2.3:a:microsoft:azure_promptflow_tools:1.2.0
Microsoft » Azure Promptflow Tools » Version: 1.3.0

cpe:2.3:a:microsoft:azure_promptflow_tools:1.3.0
Microsoft » Azure Promptflow Tools » Version: 1.4.0

cpe:2.3:a:microsoft:azure_promptflow_tools:1.4.0
Microsoft » Azure Promptflow Tools » Version: 1.5.0

cpe:2.3:a:microsoft:azure_promptflow_tools:1.5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-24986

Products

Pricing

Contact Us