CVE-2025-24049

HIGH8.4EPSS 0.13%

Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability

Published: 7/3/2025Modified: 7/3/2025

Also known as:BIT-azure-cli-2025-24049

Description

Improper neutralization of special elements used in a command ('command injection') in Azure Command Line Integration (CLI) allows an unauthorized attacker to elevate privileges locally.

Affected packages (1)

Bitnami/azure-clifrom 0, < 2.69.0

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH8.4	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References (2)

WEBhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24049
WEBhttps://nvd.nist.gov/vuln/detail/CVE-2025-24049