-
Byte Open Security
(ByteOS Network)
Log In
Sign Up
CVE Vulnerability Details :
CVE-2025-55244
PUBLISHED
More Info
Official Page
Assigner
-
microsoft
Assigner Org ID
-
f38d906d-7342-40ea-92c1-6c4a2c6478c8
View Known Exploited Vulnerability (KEV) details
Published At
-
04 Sep, 2025 | 23:09
Updated At
-
13 Feb, 2026 | 18:41
Rejected At
-
▼
CVE Numbering Authority (CNA)
Azure Bot Service Elevation of Privilege Vulnerability
Azure Bot Service Elevation of Privilege Vulnerability
Affected Products
Vendor
Microsoft Corporation
Microsoft
Product
Azure Bot Service
Versions
Affected
-
Problem Types
Type
CWE ID
Description
CWE
CWE-284
CWE-284: Improper Access Control
Type:
CWE
CWE ID:
CWE-284
Description:
CWE-284: Improper Access Control
Metrics
Version
Base score
Base severity
Vector
3.1
9.0
CRITICAL
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C
Version:
3.1
Base score:
9.0
Base severity:
CRITICAL
Vector:
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C
Metrics Other Info
Impacts
CAPEC ID
Description
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
Event
Date
Replaced By
Rejected Reason
References
Hyperlink
Resource
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55244
vendor-advisory
patch
Hyperlink:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55244
Resource:
vendor-advisory
patch
▼
Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
Version
Base score
Base severity
Vector
Metrics Other Info
Impacts
CAPEC ID
Description
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
Event
Date
Replaced By
Rejected Reason
References
Hyperlink
Resource
Details not found