Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
Improper authentication in Microsoft Defender for Identity allows an unauthorized attacker to perform spoofing over an adjacent network.
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
CVE-2025-49706
MEDIUM CVSS 6.5 KEV
Find Similar
Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.
Improper access control in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
Improper certificate validation in Windows SMB allows an authorized attacker to perform spoofing over a network.
Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoofing locally.
Improper verification of cryptographic signature in Windows Certificates allows an unauthorized attacker to perform spoofing over a network.
CWE-287: Improper Authentication vulnerability exists that could cause an Authentication Bypass when an unauthorized user without permission rights has physical access to the EPAS-UI computer and is a
An improper authentication vulnerability [CWE-287] in Fortinet FortiClientEMS version 7.4.0 and before 7.2.4 allows an unauthenticated attacker with the knowledge of the targeted user's FCTUID and VDO
Insufficient ui warning of dangerous operations in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network.
CVE-2026-32202
MEDIUM CVSS 4.3 KEV
Find Similar
Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network.
CVE-2026-45480
CRITICAL CVSS 10.0
Find Similar
Improper authentication in Azure Active Directory allows an unauthorized attacker to elevate privileges over a network.
Page 1+ Next →