Shodan
Vulnerabilities
Vulnerable Software
Microsoft:  >> Teams  Security Vulnerabilities
CVE-2026-21535
Improper access control in Microsoft Teams allows an unauthorized attacker to disclose information over a network.
CVSS Score
8.2
EPSS Score
0.001
Published
2026-02-19
CVE-2025-53783
Heap-based buffer overflow in Microsoft Teams allows an unauthorized attacker to execute code over a network.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-08-12
CVE-2025-49737
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Teams allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.0
Published
2025-07-08
CVE-2025-49731
Improper handling of insufficient permissions or privileges in Microsoft Teams allows an authorized attacker to elevate privileges over a network.
CVSS Score
3.1
EPSS Score
0.001
Published
2025-07-08
CVE-2024-42004
A library injection vulnerability exists in Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-12-18
CVE-2024-41138
A library injection vulnerability exists in the com.microsoft.teams2.modulehost.app helper app of Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS Score
7.1
EPSS Score
0.002
Published
2024-12-18
CVE-2024-41145
A library injection vulnerability exists in the WebView.app helper app of Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-12-18
CVE-2024-38197
Microsoft Teams for iOS Spoofing Vulnerability
CVSS Score
6.5
EPSS Score
0.09
Published
2024-08-13
CVE-2024-21448
Microsoft Teams for Android Information Disclosure Vulnerability
CVSS Score
5.0
EPSS Score
0.003
Published
2024-03-12
CVE-2024-21374
Microsoft Teams for Android Information Disclosure Vulnerability
CVSS Score
5.0
EPSS Score
0.015
Published
2024-02-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved