azure health bot (microsoft) — Vulnerabilities

Signals

Monitoring NVD, CISA KEV, EPSS and the Dragons Community ransomware tracker in near-real timeMonitoring NVD, CISA KEV, EPSS and the Dragons Community ransomware tracker in near-real time

Vendors · microsoft · azure health bot

azure health bot

· 1 Criticalmicrosoft · 2 known vulnerabilities

Total

Critical

High

Medium

CISA KEV

CVE-2025-21384HIGH 8.3

Mar 31, 2025

An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in Microsoft Azure Health Bot to elevate privileges over a network.

CVE-2024-38109CRITICAL 9.1

Aug 13, 2024

An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in Microsoft Azure Health Bot to elevate privileges over a network.

All microsoft products All Vendors CVE Database KEV Catalog