Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
Improper access control in Azure SaaS Resources allows an authorized attacker to disclose information over a network.
Improper access control in Microsoft Teams allows an unauthorized attacker to disclose information over a network.
Improper access control in Azure Notification Service allows an authorized attacker to elevate privileges over a network.
CVE-2025-59273
CRITICAL CVSS 9.8
Find Similar
Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges over a network.
CVE-2026-33105
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Microsoft Azure Kubernetes Service allows an unauthorized attacker to elevate privileges over a network.
Improper authorization in Azure Machine Learning allows an authorized attacker to elevate privileges over a network.
Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network.
Improper authentication in Azure SRE Agent allows an unauthorized attacker to disclose information over a network.
Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.
CVE-2025-65041
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Microsoft Partner Center allows an unauthorized attacker to elevate privileges over a network.
Binding to an unrestricted ip address in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network.
Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally.
Page 1+ Next →