Oct 2025: Azure Entra ID Elevation of Privilege Vulnerability
CVE-2025-59218 Published on October 9, 2025

Azure Entra ID Elevation of Privilege Vulnerability
Azure Entra ID Elevation of Privilege Vulnerability

Vendor Advisory NVD

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2025-59218 has been classified to as an Authorization vulnerability or weakness.


Products Associated with CVE-2025-59218

Want to know whenever a new CVE is published for Microsoft Entra Id? stack.watch will email you.

Microsoft Entra Id
 

Affected Versions

Microsoft Entra Version - is affected by CVE-2025-59218

Exploit Probability

EPSS
0.14%
Percentile
33.90%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.