CVE-2025-59247
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-10-09
Last updated on: 2025-10-20
Assigner: Microsoft Corporation
Description
Description
Azure PlayFab Elevation of Privilege Vulnerability
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| microsoft | azure_playfab | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-269 | The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor. |
| CWE-565 | The product relies on the existence or values of cookies when performing security-critical operations, but it does not properly ensure that the setting is valid for the associated user. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Elevation of Privilege issue in Azure PlayFab, which means an attacker with some level of access could exploit it to gain higher privileges than intended.
How can this vulnerability impact me? :
The vulnerability can lead to an attacker gaining elevated privileges, potentially allowing them to fully compromise the affected system, resulting in high impact on confidentiality, integrity, and availability.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70