Microsoft: >> Entra Id Security Vulnerabilities
Origin validation error in Microsoft Entra ID allows an unauthorized attacker to elevate privileges over a network.
CVSS Score
10.0
EPSS Score
0.0
Published
2026-05-22
Authentication bypass using an alternate path or channel in Microsoft Azure Active Directory B2C allows an unauthorized attacker to elevate privileges over a network.
CVSS Score
9.1
EPSS Score
0.001
Published
2026-05-22
Exposure of sensitive information to an unauthorized actor in Azure Entra ID allows an unauthorized attacker to perform spoofing over a network.
CVSS Score
9.3
EPSS Score
0.001
Published
2026-05-12
Server-side request forgery (ssrf) in Microsoft Entra ID Entitlement Management allows an unauthorized attacker to perform spoofing over a network.
CVSS Score
10.0
EPSS Score
0.001
Published
2026-04-23
Azure Entra ID Elevation of Privilege Vulnerability
CVSS Score
9.3
EPSS Score
0.001
Published
2026-01-22
Azure Entra ID Elevation of Privilege Vulnerability
CVSS Score
9.6
EPSS Score
0.001
Published
2025-10-09
Azure Entra ID Elevation of Privilege Vulnerability
CVSS Score
9.8
EPSS Score
0.002
Published
2025-10-09
Azure Entra ID Elevation of Privilege Vulnerability
CVSS Score
10.0
EPSS Score
0.007
Published
2025-09-04
Improper access control in Decentralized Identity Services resulted in a vulnerability that allows an unauthenticated attacker to disable Verifiable ID's on another tenant.
CVSS Score
7.5
EPSS Score
0.08
Published
2024-08-23