CVE-2025-53765

CWE-3594 documents4 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 73.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft Azure Stack HUBMicrosoft Azure APP Service ON Azure Stack
Timeline
PublishedAug 12

Description

Exposure of private personal information to an unauthorized actor in Azure Stack allows an authorized attacker to disclose information locally.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 0.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5microsoft/azure_stack_hub1.0.0102.10.2.11

🔴Vulnerability Details

2
GHSA
GHSA-mm9r-mqf2-8fj4: Exposure of private personal information to an unauthorized actor in Azure Stack allows an authorized attacker to disclose information locally2025-08-12
CVEList
Azure Stack Hub Information Disclosure Vulnerability2025-08-12

📋Vendor Advisories

1
Microsoft
Azure Stack Hub Information Disclosure Vulnerability2025-08-12
CVE-2025-53765 (MEDIUM CVSS 5.5) | Exposure of private personal inform | cvebase.io