本ページは microsoft azure_connected_machine_agent に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2026-40381 | Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.22% | 2026-05-12 | 2026-06-17 |
| CVE-2026-21224 | Stack-based buffer overflow in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.30% | 2026-01-13 | 2026-06-17 |
| CVE-2025-58724 | Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.52% | 2025-10-14 | 2026-06-17 |
| CVE-2025-47989 | Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.0 | 0.50% | 2025-10-14 | 2026-06-17 |
| CVE-2025-55316 | External control of file name or path in Azure Arc allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.34% | 2025-09-09 | 2026-06-17 |
| CVE-2025-49692 | Improper access control in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.29% | 2025-09-09 | 2026-06-17 |
| CVE-2024-38162 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | [email protected] | 7.8 | 0.51% | 2024-08-13 | 2026-06-17 |
| CVE-2024-38098 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | [email protected] | 7.8 | 0.63% | 2024-08-13 | 2026-06-17 |
| CVE-2024-21329 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | [email protected] | 7.3 | 1.09% | 2024-02-13 | 2026-06-17 |
| CVE-2023-35624 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | [email protected] | 7.3 | 0.88% | 2023-12-12 | 2026-06-17 |