How severe is CVE-2025-21384?

CVE-2025-21384 has a CVSS v3 score of 8.3 (HIGH).

CVE-2025-21384

Name: azure_health_bot
Author: microsoft

8.3HIGH

An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in Microsoft Azure Health Bot to elevate privileges over a network.

Published: 4/1/2025Updated: 7/8/2025

Description

An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in Microsoft Azure Health Bot to elevate privileges over a network.

AI AnalysisPowered by AI

Affected Products

microsoftazure_health_bot

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21384
Vendor Advisory