Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
8 CRITICAL12 HIGH
CVE-2026-45480
CRITICAL CVSS 10.0
Find Similar
Improper authentication in Azure Active Directory allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.016
CVE-2026-42822
CRITICAL CVSS 10.0
Find Similar
Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.016
CVE-2026-47280
CRITICAL CVSS 9.8
Find Similar
Improper authentication in Azure Resource Manager (ARM) allows an unauthorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.016
CVE-2026-42834
HIGH CVSS 7.8
Find Similar
Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.015
CVE-2026-41086
HIGH CVSS 8.8
Find Similar
Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.015
CVE-2026-47647
CRITICAL CVSS 9.9
Find Similar
Improper access control in Microsoft Dynamics 365 allows an authorized attacker to elevate privileges over a network.
NVD RRF 0.014
CVE-2025-29810
HIGH CVSS 7.5
Find Similar
Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.014
CVE-2026-42823
CRITICAL CVSS 9.9
Find Similar
Improper access control in Azure Logic Apps allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.014
CVE-2024-38139
HIGH CVSS 8.8
Find Similar
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.014
CVE-2026-48584
CRITICAL CVSS 9.9
Find Similar
Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges over a network.
NVD RRF 0.014
CVE-2024-38194
CRITICAL CVSS 9.9
Find Similar
An authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network.
microsoft
NVD RRF 0.013
CVE-2025-49746
HIGH CVSS 8.8
Find Similar
Improper authorization in Azure Machine Learning allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.013
CVE-2026-40381
HIGH CVSS 7.8
Find Similar
Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally.
microsoft
NVD RRF 0.013
CVE-2025-24053
HIGH CVSS 7.2
Find Similar
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.013
CVE-2026-26119
HIGH CVSS 8.8
Find Similar
Improper authentication in Windows Admin Center allows an authorized attacker to elevate privileges over a network.
microsoft
NVD RRF 0.013
Page 1+ Next →