Vulnerability Details CVE-2025-59285
Deserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.0%
CVSS Severity
CVSS v3 Score 7.0
Products affected by CVE-2025-59285
-
cpe:2.3:a:microsoft:azure_monitor_agent:-
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.24.0
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.26.0
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.30.0
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.31.0
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.32.0
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.32.6
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.33.1
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.33.4
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.34.0
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.34.5
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.35.1
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.35.4
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.35.5
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.35.6
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.35.7
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.35.8
-
cpe:2.3:a:microsoft:azure_monitor_agent:1.36