Microsoft Azure Monitor Agent vulnerabilities

CVE-2025-62550 [HIGH] CWE-131 CVE-2025-62550: Out-of-bounds write in Azure Monitor Agent allows an authorized attacker to execute code over a netw Out-of-bounds write in Azure Monitor Agent allows an authorized attacker to execute code over a network.

CVE-2025-59504 [HIGH] CWE-122 CVE-2025-59504: Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code lo Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code locally.

CVE-2025-59285 [HIGH] CWE-502 CVE-2025-59285: Deserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate pr Deserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.

CVE-2025-59494 [HIGH] CWE-284 CVE-2025-59494: Improper access control in Azure Monitor Agent allows an authorized attacker to elevate privileges l Improper access control in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.

CVE-2025-47988 [HIGH] CWE-94 CVE-2025-47988: Improper control of generation of code ('code injection') in Azure Monitor Agent allows an unauthori Improper control of generation of code ('code injection') in Azure Monitor Agent allows an unauthorized attacker to execute code over an adjacent network.

CVE-2024-38097 [HIGH] CWE-59 CVE-2024-38097: Azure Monitor Agent Elevation of Privilege Vulnerability Azure Monitor Agent Elevation of Privilege Vulnerability

CVE-2024-35254 [HIGH] CWE-59 CVE-2024-35254: Azure Monitor Agent Elevation of Privilege Vulnerability Azure Monitor Agent Elevation of Privilege Vulnerability

CVE-2024-30060 [HIGH] CWE-59 CVE-2024-30060: Azure Monitor Agent Elevation of Privilege Vulnerability Azure Monitor Agent Elevation of Privilege Vulnerability

CVE-2024-29989 [HIGH] CWE-59 CVE-2024-29989: Azure Monitor Agent Elevation of Privilege Vulnerability Azure Monitor Agent Elevation of Privilege Vulnerability