Teams@* Security Vulnerabilities and Issues — Teams@* CVE List

Lucene search

MicrosoftTeams*

11 matches found

CVE•added 2023/07/11 5:15 p.m.•1552 views

CVE-2023-24881

Microsoft Teams Information Disclosure Vulnerability

6.5CVSS6.1AI score0.00263EPSS

CVE•added 2023/09/12 3:15 p.m.•1386 views

CVE-2023-4863

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

8.8CVSS8.5AI score0.93991EPSS

CVE•added 2022/02/09 5:15 p.m.•1103 views

CVE-2022-21965

Microsoft Teams Denial of Service Vulnerability

7.5CVSS7.5AI score0.12134EPSS

CVE•added 2024/02/13 6:15 p.m.•201 views

CVE-2024-21374

Microsoft Teams for Android Information Disclosure Vulnerability

5CVSS5.8AI score0.01479EPSS

CVE•added 2023/08/08 6:15 p.m.•200 views

CVE-2023-29330

Microsoft Teams Remote Code Execution Vulnerability

8.8CVSS8.7AI score0.00598EPSS

CVE•added 2024/03/12 5:15 p.m.•191 views

CVE-2024-21448

Microsoft Teams for Android Information Disclosure Vulnerability

5CVSS5.8AI score0.00328EPSS

CVE•added 2023/08/08 6:15 p.m.•167 views

CVE-2023-29328

Microsoft Teams Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.00598EPSS

CVE•added 2020/12/09 1:15 a.m.•134 views

CVE-2020-10146

The Microsoft Teams online service contains a stored cross-site scripting vulnerability in the displayName parameter that can be exploited on Teams clients to obtain sensitive information such as authentication tokens and to possibly execute arbitrary commands. This vulnerability was fixed for all ...

5.7CVSS5.8AI score0.00513EPSS

CVE•added 2024/08/13 6:15 p.m.•89 views

CVE-2024-38197

Microsoft Teams for iOS Spoofing Vulnerability

6.5CVSS6.2AI score0.00867EPSS

CVE•added 2025/07/08 5:16 p.m.•19 views

CVE-2025-49731

Improper handling of insufficient permissions or privileges in Microsoft Teams allows an authorized attacker to elevate privileges over a network.

3.1CVSS6.4AI score0.0004EPSS

CVE•added 2025/07/08 5:16 p.m.•18 views

CVE-2025-49737

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Teams allows an authorized attacker to elevate privileges locally.

7CVSS6.6AI score0.00041EPSS