CVE-2025-25002

medium

Microsoft

CVSS v3 Base Score

6.8

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS Score

1.8%

Exploitation probability in 30 days

Top 18% most likely to be exploited

Attack Characteristics

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Confidentiality

High

Integrity

High

Availability

High

Published: April 8, 2025 (401 days ago)

Last Modified: January 16, 2026

Vendor: Microsoft

Description

Insertion of sensitive information into log file in Azure Local Cluster allows an authorized attacker to disclose information over an adjacent network.

CWE

CWE-532

Affected Products

microsoft azure local cluster

References

🔗 msrc.microsoft.com

CVE-2025-25002

Vulnerability Report

Description

CWE

Affected Products

References