本页列出影响 microsoft azure_connected_machine_agent 的已公开 CVE 漏洞(通过 NVD CPE 关联)。每行包含严重程度评分、摘要与发布日期,便于识别与分析安全问题。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2026-40381 | Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.22% | 2026-05-12 | 2026-06-17 |
| CVE-2026-21224 | Stack-based buffer overflow in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.30% | 2026-01-13 | 2026-06-17 |
| CVE-2025-58724 | Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.52% | 2025-10-14 | 2026-06-17 |
| CVE-2025-47989 | Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.0 | 0.50% | 2025-10-14 | 2026-06-17 |
| CVE-2025-55316 | External control of file name or path in Azure Arc allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.34% | 2025-09-09 | 2026-06-17 |
| CVE-2025-49692 | Improper access control in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges locally. | [email protected] | 7.8 | 0.29% | 2025-09-09 | 2026-06-17 |
| CVE-2024-38162 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | [email protected] | 7.8 | 0.51% | 2024-08-13 | 2026-06-17 |
| CVE-2024-38098 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | [email protected] | 7.8 | 0.63% | 2024-08-13 | 2026-06-17 |
| CVE-2024-21329 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | [email protected] | 7.3 | 1.09% | 2024-02-13 | 2026-06-17 |
| CVE-2023-35624 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | [email protected] | 7.3 | 0.88% | 2023-12-12 | 2026-06-17 |