CVE-2025-54914

CRITICAL

Azure Networking - Improper Access Control

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-54914. PoCs published by Ash1996x, mrk336.

AI-analyzed exploit summary This repository contains a functional PoC for CVE-2025-54914, an Azure Networking Route exploit. It includes features for route creation/deletion, multi-target scanning, persistence, and evasion techniques.

Description

Azure Networking Elevation of Privilege Vulnerability

Exploits (2)

nomisec WORKING POC 4 stars
by Ash1996x · poc
https://github.com/Ash1996x/CVE-2025-54914-PoC

This repository contains a functional PoC for CVE-2025-54914, an Azure Networking Route exploit. It includes features for route creation/deletion, multi-target scanning, persistence, and evasion techniques.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Azure Networking Route (API 2025-09-01)
Auth required
Prerequisites: Azure CLI authentication · Valid subscription ID · Access to target virtual networks
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 1 stars
by mrk336 · poc
https://github.com/mrk336/Azure-Networking-Privilege-Escalation-Exploit-CVE-2025-54914

The repository contains a Python-based exploit for CVE-2025-54914, a privilege escalation vulnerability in Azure Networking services. The exploit leverages a missing privilege check in the 'GetRouteTable' API to create unauthorized routes in a subnet.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Azure Networking services (API version 2025-09-01)
Auth required
Prerequisites: Valid Azure access token with read permissions on a virtual network · Subscription ID, resource group name, virtual network ID, and subnet ID
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 10.0
EPSS 0.0226
EPSS Percentile 80.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-284
Status published
Products (1)
microsoft/azure_networking
Published Sep 04, 2025
Tracked Since Feb 18, 2026