CVE-2025-53781
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-08-12

Last updated on: 2025-09-10

Assigner: Microsoft Corporation

Description
Exposure of sensitive information to an unauthorized actor in Azure Virtual Machines allows an authorized attacker to disclose information over a network.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-08-12
Last Modified
2025-09-10
Generated
2026-05-07
AI Q&A
2025-08-12
EPSS Evaluated
2026-05-05
NVD
CVE-2025-53781
EUVD
EUVD-2025-24365
Affected Vendors & Products
Showing 22 associated CPEs
Vendor Product Version / Range
microsoft ecesv6-series_azure_vm_firmware *
microsoft ecesv6-series_azure_vm *
microsoft dcesv6-series_azure_vm_firmware *
microsoft dcesv6-series_azure_vm *
microsoft nccadsh100v5-series_azure_vm_firmware *
microsoft nccadsh100v5-series_azure_vm *
microsoft ecedsv5-series_azure_vm_firmware *
microsoft ecedsv5-series_azure_vm *
microsoft ecesv5-series_azure_vm_firmware *
microsoft ecesv5-series_azure_vm *
microsoft dcedsv5-series_azure_vm_firmware *
microsoft dcedsv5-series_azure_vm *
microsoft dcesv5-series_azure_vm_firmware *
microsoft dcesv5-series_azure_vm *
microsoft ecadsv5-series_azure_vm_firmware *
microsoft ecadsv5-series_azure_vm *
microsoft ecasv5-series_azure_vm_firmware *
microsoft ecasv5-series_azure_vm *
microsoft dcadsv5-series_azure_vm_firmware *
microsoft dcadsv5-series_azure_vm *
microsoft dcasv5-series_azure_vm_firmware *
microsoft dcasv5-series_azure_vm *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-200 The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CWE-NVD-CWE-noinfo
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability involves the exposure of sensitive information in Azure Virtual Machines, where an authorized attacker can disclose information over a network without proper authorization.


How can this vulnerability impact me? :

The vulnerability can lead to unauthorized disclosure of sensitive information, potentially compromising confidentiality and leading to data breaches or misuse of information.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart