Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
Improper access control in Microsoft Teams allows an unauthorized attacker to disclose information over a network.
Improper handling of insufficient permissions or privileges in Microsoft Teams allows an authorized attacker to elevate privileges over a network.
Improper access control in Azure SaaS Resources allows an authorized attacker to disclose information over a network.
Exposure of sensitive information to an unauthorized actor in Xbox allows an unauthorized attacker to disclose information over a network.
CVE-2024-38183
CRITICAL CVSS 9.8
Find Similar
An improper access control vulnerability in GroupMe allows an a unauthenticated attacker to elevate privileges over a network.
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Teams allows an authorized attacker to elevate privileges locally.
CVE-2025-53795
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Microsoft PC Manager allows an unauthorized attacker to elevate privileges over a network.
Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.
Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.
Improper authorization in Microsoft Exchange Online allows an unauthorized attacker to disclose information over a network.
Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.
Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.
Page 1+ Next →