{"id":"CVE-2025-24986","details":"Improper isolation or compartmentalization in Azure PromptFlow allows an unauthorized attacker to execute code over a network.","aliases":["GHSA-gprr-v9f2-px3c"],"modified":"2026-03-12T20:07:52.899182Z","published":"2025-03-11T17:16:34.563Z","references":[{"type":"ADVISORY","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24986"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"1.17.2"}]},{"events":[{"introduced":"0"},{"fixed":"1.6.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-24986.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}]}