CVE-2026-21515 Azure IoT Central Elevation of Privilege Vulnerability

...

CVE-2026-21515

Exposure of sensitive information to an unauthorized actor in Azure IOT Central allows an authorized attacker to elevate privileges over a network...

EUVD-2026-10583

Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...

CVE-2026-23662 Azure IoT Explorer Information Disclosure Vulnerability

...

CVE-2026-23662 Azure IoT Explorer Information Disclosure Vulnerability

...

CVE-2026-23661 Azure IoT Explorer Information Disclosure Vulnerability

...

CVE-2026-26121

CVE-2026-26121 describes a server-side request forgery (SSRF) in Azure IoT Explorer that could allow an unauthorized attacker to perform spoofing over a network. The vulnerability affects components listed in Azure IoT Explorer exposure and is associated with elevated risk as indicated by CVSS de...

CVE-2026-26121 Azure IOT Explorer Spoofing Vulnerability

...

PT-2026-24267

Уязвимость программного обеспечения Azure IoT Explorer связана с передачей критичной информации открытым текстом. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, раскрыть защищаемую информацию...

CVE-2026-21528

Binding to an unrestricted ip address in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...

CVE-2026-21528 Azure IoT Explorer Information Disclosure Vulnerability

...

The vulnerability in the set of tools and libraries for developing Azure IoT Hub Device Client SDK, related to a memory reclamation error, allows a perpetrator to execute arbitrary code.

The vulnerability of the tools and libraries used for developing Azure IoT Hub Device Client SDK is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

Azure IoT Platform Device SDK Double Free Vulnerability

...

Malicious code in azure-iot-device-update-samples-ts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04f309ce322ca5df94273799793fea95b16415c455a8b916dc8927036c705855 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2019-0741

An information disclosure vulnerability exists in the way Azure IoT Java SDK logs sensitive information, aka 'Azure IoT Java SDK Information Disclosure Vulnerability'...

CVE-2019-0729

An Elevation of Privilege vulnerability exists in the way Azure IoT Java SDK generates symmetric keys for encryption, allowing an attacker to predict the randomness of the key, aka 'Azure IoT Java SDK Elevation of Privilege Vulnerability'...