Primary

Context

Microsoft Azure Monitor Agent Privilege Escalation Vulnerability

Vulnerability

Patched

A vulnerability allowing improper access control in Azure Monitor Agent has been identified, which could enable an authorized attacker to locally elevate privileges. This issue affects all versions of Azure Monitor Agent prior to the security update released on October 14, 2025.

Impact

Exploitation of this vulnerability allows a regular user on an Arc-enabled virtual machine to read any file on the system with NT SYSTEM privileges.

Remediation

Users can download the security update for Azure Monitor Agent from the Microsoft Learn website. For more information on managing the Azure Monitor Agent, refer to the release notes available on the same site.

Added: Oct 14, 2025, 5:54 PM

Updated: Oct 14, 2025, 8:22 PM

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Azure Monitor Agent Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Microsoft Azure Monitor Agent

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating