Lucene search
K

2357 matches found

OSV
OSV
added 6 days ago7 views

PYSEC-2026-1208 Azure Core is vulnerable to deserialization of untrusted data

Deserialization of untrusted data in Azure Core shared client library for Python allows an authorized attacker to execute code over a network...

7.5CVSS6.1AI score0.00776EPSS
Exploits0References6
NVD
NVD
added 2026/07/03 9:17 p.m.5 views

CVE-2026-55945

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Edge Chromium-based allows an authorized attacker to disclose information locally...

4.2CVSS0.00145EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/03 12:31 a.m.9 views

EUVD-2026-41443

Server-side request forgery ssrf in Azure OpenAI allows an authorized attacker to elevate privileges over a network...

9.9CVSS5.8AI score0.00608EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/03 12:31 a.m.7 views

EUVD-2026-41444

Improper access control in Azure Synapse allows an authorized attacker to elevate privileges over a network...

4.8CVSS5.8AI score0.00359EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/03 12:31 a.m.8 views

EUVD-2026-41446

Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network...

8.8CVSS5.8AI score0.0063EPSS
Exploits1References2
NVD
NVD
added 2026/07/02 11:16 p.m.11 views

CVE-2026-26145

Improper access control in Azure Synapse allows an authorized attacker to elevate privileges over a network...

9.8CVSS0.00359EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/02 10:18 p.m.8 views

CVE-2026-45499

Server-side request forgery ssrf in Azure OpenAI allows an authorized attacker to elevate privileges over a network...

9.9CVSS5.8AI score0.00608EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/07/02 2:0 p.m.7 views

Azure OpenAI Elevation of Privilege Vulnerability

Server-side request forgery ssrf in Azure OpenAI allows an authorized attacker to elevate privileges over a network...

9.9CVSS5.8AI score0.00608EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.13 views

PT-2026-55319

Name of the Vulnerable Software and Affected Versions Azure OpenAI affected versions not specified Description A server-side request forgery SSRF issue exists in Azure OpenAI. This flaw allows an authorized attacker to elevate privileges over a network. SSRF is a vulnerability where an attacker c...

9.9CVSS5.9AI score0.00608EPSS
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2026/07/01 8:14 p.m.6 views

CVE-2026-50521

Use after free in Microsoft Edge Chromium-based allows an authorized attacker to execute code over a network...

8.3CVSS5.9AI score0.00823EPSS
Exploits0References2Affected Software1
CISA KEV Catalog
CISA KEV Catalog
added 2026/07/01 12:0 a.m.10 views

Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability

Microsoft SharePoint Server contains a deserialization of untrusted data vulnerability which allows an authorized attacker to execute code over a network...

8.8CVSS7.7AI score0.03219EPSS
In wildExploits4
Microsoft CVE
Microsoft CVE
added 2026/06/26 2:0 p.m.10 views

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

Use after free in Microsoft Edge Chromium-based allows an authorized attacker to execute code over a network...

8.3CVSS5.9AI score0.00823EPSS
Exploits0
NVD
NVD
added 2026/06/19 9:16 p.m.13 views

CVE-2026-32208

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Entra ID allows an authorized attacker to perform spoofing over a network...

8.8CVSS0.00282EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/19 8:29 p.m.4 views

CVE-2026-48582

Missing authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network...

9.6CVSS5.8AI score0.00389EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/19 8:29 p.m.8 views

EUVD-2026-38090

Missing authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network...

9.6CVSS5.8AI score0.00389EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 8:27 p.m.8 views

EUVD-2026-38085

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Edge Chromium-based allows an authorized attacker to perform spoofing over a network...

8.8CVSS5.8AI score0.00282EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.20 views

PT-2026-51033

Name of the Vulnerable Software and Affected Versions Microsoft Exchange Online affected versions not specified Description Missing authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network. There have been reports of elevated activities targeti...

9.6CVSS5.8AI score0.00389EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.18 views

PT-2026-51034

Name of the Vulnerable Software and Affected Versions Azure Synapse affected versions not specified Description Execution with unnecessary privileges allows an authorized attacker to elevate privileges over a network. Recommendations At the moment, there is no information about a newer version th...

9.9CVSS5.9AI score0.005EPSS
Exploits0References7
Microsoft CVE
Microsoft CVE
added 2026/06/18 2:0 p.m.9 views

Microsoft Exchange Online Elevation of Privilege Vulnerability

Missing authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network...

9.6CVSS5.8AI score0.00389EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/18 2:0 p.m.9 views

Dynamics 365 Elevation of Privilege Vulnerability

Improper access control in Microsoft Dynamics 365 allows an authorized attacker to elevate privileges over a network...

9.9CVSS5.8AI score0.00426EPSS
Exploits0
Rows per page
Query Builder