Microsoft Azure Active Directory vulnerabilities
2 known vulnerabilities affecting microsoft/azure_active_directory.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2026-45480P2CRITICALCVSS 10.0v-2026-06-19
CVE-2026-45480 [CRITICAL] CWE-287 CVE-2026-45480: Improper authentication in Azure Active Directory allows an unauthorized attacker to elevate privile
Improper authentication in Azure Active Directory allows an unauthorized attacker to elevate privileges over a network.
nvd
CVE-2021-42306P3MEDIUMCVSS 6.5fixed in 2021-10-30vN/A2021-11-24
CVE-2021-42306 [MEDIUM] CWE-522 CVE-2021-42306: An information disclosure vulnerability manifests when a user or an application uploads unprotected
An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential on an Azure AD Application or Service Principal (which is not recommended). This vulnerability allows a user or service in the tenant with application read access to read the priva
nvd