Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-30389

Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.

Published

2025-04-30T18:15:46.330

Last Modified

2025-05-12T19:43:12.623

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.7 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-285
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application microsoft azure_ai_bot_service - Yes
References