Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
8 CRITICAL12 HIGH
CVE-2026-32213
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Azure AI Foundry allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.016
CVE-2025-30392
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.016
CVE-2025-30389
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.016
CVE-2025-49746
HIGH CVSS 8.8
Find Similar
Improper authorization in Azure Machine Learning allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.015
CVE-2026-35435
CRITICAL CVSS 10.0
Find Similar
Improper access control in Azure AI Foundry M365 published agents allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.015
CVE-2025-29826
HIGH CVSS 8.8
Find Similar
Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.014
CVE-2025-26683
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Azure Playwright allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.014
CVE-2026-33105
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Microsoft Azure Kubernetes Service allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.014
CVE-2025-24053
HIGH CVSS 7.2
Find Similar
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.014
CVE-2024-38139
HIGH CVSS 8.8
Find Similar
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.014
CVE-2025-65041
CRITICAL CVSS 9.8
Find Similar
Improper authorization in Microsoft Partner Center allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.013
CVE-2025-49747
HIGH CVSS 8.8
Find Similar
Missing authorization in Azure Machine Learning allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.013
CVE-2025-29814
HIGH CVSS 8.8
Find Similar
Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.013
Page 1+ Next →