Vulnerability Details CVE-2025-49707
Improper access control in Azure Virtual Machines allows an authorized attacker to perform spoofing locally.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.0%
CVSS Severity
CVSS v3 Score 7.9
Products affected by CVE-2025-49707
-
cpe:2.3:h:microsoft:dcadsv5-series_azure_vm:-
-
cpe:2.3:h:microsoft:dcasv5-series_azure_vm:-
-
cpe:2.3:h:microsoft:dcedsv5-series_azure_vm:-
-
cpe:2.3:h:microsoft:dcesv5-series_azure_vm:-
-
cpe:2.3:h:microsoft:dcesv6-series_azure_vm:-
-
cpe:2.3:h:microsoft:ecadsv5-series_azure_vm:-
-
cpe:2.3:h:microsoft:ecasv5-series_azure_vm:-
-
cpe:2.3:h:microsoft:ecedsv5-series_azure_vm:-
-
cpe:2.3:h:microsoft:ecesv5-series_azure_vm:-
-
cpe:2.3:h:microsoft:ecesv6-series_azure_vm:-
-
cpe:2.3:h:microsoft:nccadsh100v5-series_azure_vm:-
-
cpe:2.3:o:microsoft:dcadsv5-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:dcasv5-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:dcedsv5-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:dcesv5-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:dcesv6-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:ecadsv5-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:ecasv5-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:ecedsv5-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:ecesv5-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:ecesv6-series_azure_vm_firmware:-
-
cpe:2.3:o:microsoft:nccadsh100v5-series_azure_vm_firmware:-