CVE-2025-21380

Severity CVSS v4.0:
Pending analysis
Type:
CWE-284 Improper Access Control
Publication date:
09/01/2025
Last modified:
05/02/2025

Description

Improper access control in Azure SaaS Resources allows an authorized attacker to disclose information over a network.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:microsoft:azure_marketplace:-:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools