CVE-2025-47158
CRITICAL9.0CVSS v3
—CVSS v2
0.54%
EPSS (exploit probability)
CWE-302CWE
Description
Authentication bypass by assumed-immutable data in Azure DevOps allows an unauthorized attacker to elevate privileges over a network.
CVSS v3 vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected routers (0)
No routers currently mapped to this CVE in our database.