Azure DevOps Server Elevation of Privilege Vulnerability

July 18, 2025 invoker category_news

Security Update News

Update Information

Title Azure DevOps Server Elevation of Privilege Vulnerability
Update ID MS:CVE-2025-47158
Type mscve
Published 2025-07-18T07:00:00
Last Updated 2025-07-18T07:00:00

Security Impact

CVSS Score 9.0
Severity CRITICAL

Affected CVEs

  • CVE-2025-47158

Update Details

Authentication bypass by assumed-immutable data in Azure DevOps allows an unauthorized attacker to elevate privileges over a network.

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.