Primary

Context

Microsoft Azure AD SSH Login Extension for Linux Privilege Escalation Vulnerability

Vulnerability

A vulnerability in the Azure AD SSH Login extension for Linux has been identified, allowing unauthorized attackers to elevate privileges locally. This issue arises from the external initialization of trusted variables or data stores in Azure Entra ID.

Impact

Exploitation of this vulnerability allows an unprivileged local user on an affected Azure Linux VM to gain root privileges.

Remediation

To address this vulnerability, users can update the Azure AD SSH Login extension for Linux using their distribution's package manager. Systems with the extension already installed have packages.microsoft.com configured automatically. Users should run 'sudo apt update aadsshlogin' for Ubuntu or Debian, 'sudo dnf update aadsshlogin' for RHEL-based distributions, or 'sudo zypper update aadsshlogin' for SUSE-based distributions.

Added: Mar 10, 2026, 7:05 PM

Updated: Mar 10, 2026, 7:05 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.9

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

2.9

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Azure AD SSH Login Extension for Linux Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating