Vulnerabilities > Microsoft > Azure AI BOT Service

DATE CVE VULNERABILITY TITLE RISK
2025-04-30 CVE-2025-30389 Improper Authorization vulnerability in Microsoft Azure AI BOT Service
Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.
network
low complexity
microsoft CWE-285
critical
 9.8
9.8
2025-04-30 CVE-2025-30392 Improper Authorization vulnerability in Microsoft Azure AI BOT Service
Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.
network
low complexity
microsoft CWE-285
critical
 9.8
9.8