Lucene search
K

54 matches found

Vulnrichment
Vulnrichment
added 2025/03/21 12:29 a.m.15 views

CVE-2025-29814 Microsoft Partner Center Elevation of Privilege Vulnerability

...

9.3CVSS9.3AI score0.01882EPSS
Exploits0References1
CVE
CVE
added 2025/03/21 12:29 a.m.134 views

CVE-2025-29814

Technical details about CVE-2025-29814 are not provided in the connected documents. Public information here only notes an elevation of privileges in Microsoft Partner Center; no affected versions, exploit details, or fixes are included. Monitor for updates.

9.3CVSS9.2AI score0.01882EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2025/03/20 7:0 a.m.15 views

Microsoft Partner Center Elevation of Privilege Vulnerability

Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network...

9.3CVSS6.9AI score0.01882EPSS
Exploits0
CNNVD
CNNVD
added 2025/03/20 12:0 a.m.7 views

Microsoft Partner Center 输入验证错误漏洞

Microsoft Partner Center is an online platform from Microsoft Corporation USA. An input validation error vulnerability exists in Microsoft Partner Center, which stems from an attacker's ability to elevate privileges by exploiting the vulnerability...

9.3CVSS8.7AI score0.01882EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/03/20 12:0 a.m.2 views

PT-2025-12386 · Microsoft · Partner Center

Name of the Vulnerable Software and Affected Versions: Microsoft Partner Center affected versions not specified Description: The issue is related to improper authorization in Microsoft Partner Center, which allows an authorized attacker to elevate privileges over a network. Recommendations: At th...

9.4CVSS8.8AI score0.01882EPSS
Exploits0References9
The Hacker News
The Hacker News
added 2025/02/26 4:33 a.m.26 views

CISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Tuesday placed two security flaws impacting Microsoft Partner Center and Synacor Zimbra Collaboration Suite ZCS to its Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation. The vulnerabilities in...

9.8CVSS6.5AI score0.77266EPSS
Exploits0
CISA
CISA
added 2025/02/25 12:0 p.m.25 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-49035link is external Microsoft Partner Center Improper Access Control Vulnerability CVE-2023-34192link is external Synacor Zimbra Collaboration Suite ZCS...

9.8CVSS6.3AI score0.99698EPSS
In wildExploits18References10
CISA KEV Catalog
CISA KEV Catalog
added 2025/02/25 12:0 a.m.84 views

Microsoft Partner Center Improper Access Control Vulnerability

Microsoft Partner Center contains an improper access control vulnerability that allows an attacker to escalate privileges...

9.8CVSS7.3AI score0.01339EPSS
In wildExploits0
BDU FSTEC
BDU FSTEC
added 2024/12/12 12:0 a.m.5 views

The vulnerability of the Microsoft Partner Center software lies in the insecure management of privileges, allowing attackers to escalate their privileges.

The vulnerability of the Microsoft Partner Center cloud platform is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to enhance their privileges remotely...

8.7CVSS8.1AI score0.01339EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2024/11/26 12:0 a.m.16 views

KLA77601 PE vulnerabilities in Microsoft Azure

An elevation of privilege vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Azure PolicyWatch can be exploited remotely to gain...

9.8CVSS10AI score0.01339EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/11/26 12:0 a.m.1 views

PT-2024-9344 · Microsoft · Partner Center

Name of the Vulnerable Software and Affected Versions: Microsoft Partner Center affected versions not specified Description: The issue is related to improper access control, allowing an unauthenticated attacker to elevate privileges over a network. This can potentially lead to account takeover. T...

9.8CVSS9.6AI score0.01339EPSS
Exploits0References80
CNNVD
CNNVD
added 2024/11/26 12:0 a.m.3 views

Microsoft Partner Center 安全漏洞

Microsoft Partner Center is an online platform from Microsoft Corporation USA. A security vulnerability exists in Microsoft Partner Center that stems from improper access control and allows an unauthenticated attacker to elevate privileges through the network...

9.8CVSS9.5AI score0.01339EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2024/11/26 12:0 a.m.2 views

VulnCheck KEV: CVE-2024-49035

Microsoft Partner Center contains an improper access control vulnerability that allows an attacker to escalate privileges...

9.8CVSS5.8AI score0.01339EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2023/07/11 7:0 a.m.20 views

Guidance on Microsoft Signed Drivers Being Used Maliciously

Executive Summary: Microsoft was recently informed that drivers certified by Microsoft’s Windows Hardware Developer Program MWHDP were being used maliciously in post-exploitation activity. In these attacks, the attacker gained administrative privileges on compromised systems before using the...

7.1AI score
Exploits0
Rows per page
Query Builder