{"affected":[{"ecosystem_specific":{"binaries":[{"azure-cli-core":"2.17.1-2.25.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 12","name":"azure-cli-core","purl":"pkg:rpm/suse/azure-cli-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.17.1-2.25.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for azure-cli-core fixes the following issues:\n\n- CVE-2025-24049: Fix improper neutralization of special elements used in a command which allows an unauthorized attacker to elevate privileges locally. (bsc#1239460)\n","id":"SUSE-SU-2026:0273-1","modified":"2026-01-23T11:26:43Z","published":"2026-01-23T11:26:43Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-20260273-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1239460"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-24049"}],"related":["CVE-2025-24049"],"summary":"Security update for azure-cli-core","upstream":["CVE-2025-24049"]}