Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
8 CRITICAL11 HIGH1 LOW
CVE-2025-30392
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.010
CVE-2025-30389
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.010
CVE-2025-59273
CRITICAL CVSS 9.8
Find Similar
Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.010
CVE-2026-48567
CRITICAL CVSS 9.8
Find Similar
Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.010
CVE-2026-24306
CRITICAL CVSS 9.8
Find Similar
Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.010
CVE-2026-33844
CRITICAL CVSS 9.0
Find Similar
Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a network.
microsoft
NVD RRF 0.009
CVE-2026-33109
CRITICAL CVSS 9.9
Find Similar
Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a network.
microsoft
NVD RRF 0.009
CVE-2025-27740
HIGH CVSS 8.8
Find Similar
Weak authentication in Windows Active Directory Certificate Services allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.009
CVE-2026-0410
LOW CVSS 1.9
Find Similar
Authenticated administrators connected to the local network can gain elevated access to the router and make unauthorized changes to router software and functionality.
netgear
NVD RRF 0.009
CVE-2026-23663
HIGH CVSS 7.5
Find Similar
Improper privilege management in Azure Entra ID allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.009
CVE-2026-40372
CRITICAL CVSS 9.1
Find Similar
Improper verification of cryptographic signature in ASP.NET Core allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.009
CVE-2025-29826
HIGH CVSS 8.8
Find Similar
Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.009
CVE-2026-33834
HIGH CVSS 7.8
Find Similar
Improper access control in Windows Event Logging Service allows an authorized attacker to elevate privileges locally.
microsoft
NVD RRF 0.009
CVE-2025-59500
HIGH CVSS 8.8
Find Similar
Improper access control in Azure Notification Service allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.009
CVE-2026-23660
HIGH CVSS 7.8
Find Similar
Improper access control in Azure Portal Windows Admin Center allows an authorized attacker to elevate privileges locally.
microsoft
NVD RRF 0.009
CVE-2026-45648
HIGH CVSS 8.8
Find Similar
Stack-based buffer overflow in Active Directory Domain Services allows an authorized attacker to execute code over a network.
microsoft
NVD RRF 0.008
CVE-2025-58724
HIGH CVSS 7.8
Find Similar
Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.
microsoft
NVD RRF 0.008
CVE-2025-47989
HIGH CVSS 7.0
Find Similar
Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.
microsoft
NVD RRF 0.008
← Previous Page 3+ Next →