| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2025-55321 | Azure Monitor Log Analytics Spoofing Vulnerability | Microsoft Azure | Critical | 14-11-2025 |
Technical Information
An unauthenticated remote attacker can exploit a spoofing vulnerability in Azure Monitor caused by cross-site scripting, due to improper neutralization of user input during web page generation to impersonate legitimate users over the network without their knowledge.
Patch release date: Oct 14, 2025
Further information on this vulnerability is available at : CVE-2025-55321