28 matches found
CVE-2026-23664
Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...
CVE-2026-23662
Missing authentication for critical function in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...
CVE-2026-23661
Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...
CVE-2026-26121
Server-side request forgery ssrf in Azure IoT Explorer allows an unauthorized attacker to perform spoofing over a network...
Vulnerabilities fixed in Microsoft Azure
Microsoft has fixed vulnerabilities in several Azure components. A malicious party could exploit the vulnerabilities to impersonate another user, grant themselves elevated privileges or gain access to sensitive data. Azure Entra ID: |----------------|------|-------------------------------------| ...
EUVD-2026-10690
Server-side request forgery ssrf in Azure IoT Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-26121
Server-side request forgery ssrf in Azure IoT Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-26121
Server-side request forgery ssrf in Azure IoT Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-23662
Missing authentication for critical function in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...
CVE-2026-23661
Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...
CVE-2026-23664
Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...
CVE-2026-23661
Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...
CVE-2026-23664
Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...
CVE-2026-23662
Azure IoT Explorer contains an information disclosure vulnerability CVE-2026-23662. The CVSSv3.1 base score is 7.5 (HIGH) with NETWORK attack vector, LOW attack complexity, no privileges required, and no user interaction. The impact is Confidentiality: High; Integrity/Availability: None. Exploit ...
CVE-2026-23661 Azure IoT Explorer Information Disclosure Vulnerability
...
CVE-2026-23661
CVE-2026-23661 : Affected software is Azure IoT Explorer. The vulnerability is a cleartext transmission of sensitive information over the network, enabling an unauthorized attacker to disclose data. Root cause described in the sources is exposure of sensitive data through unencrypted transmission...
CVE-2026-26121 Azure IOT Explorer Spoofing Vulnerability
...
CVE-2026-26121
Server-side request forgery ssrf in Azure IoT Explorer allows an unauthorized attacker to perform spoofing over a network...
CVE-2026-23664
Azure IoT Explorer Information Disclosure (CVE-2026-23664) is due to improper restriction of the communication channel to intended endpoints, enabling a network-accessible attacker to disclose sensitive data. Affected product/component: Azure IoT Explorer (Azure IoT Explorer vulnerabilities have ...
Azure IoT Explorer Information Disclosure Vulnerability
Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network...