Microsoft Azure AI Face Service Authentication Bypass Vulnerability Allowing Privilege Escalation

Vulnerability

A vulnerability in Azure AI Face Service allows an authorized attacker to bypass authentication by spoofing, potentially leading to unauthorized privilege escalation over the network. This issue affects all versions of the Azure AI Face Service.

Impact

Exploitation of this vulnerability could allow an authorized attacker to gain elevated privileges within the Azure AI Face Service, potentially leading to unauthorized access or actions.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Azure AI Face Service Authentication Bypass Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating