Microsoft Partner Center vulnerabilities
5 known vulnerabilities affecting microsoft/microsoft_partner_center.
Total CVEs
5
CISA KEV
1
actively exploited
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL3HIGH2
Vulnerabilities
Page 1 of 1
CVE-2024-49035P1CRITICALCVSS 9.8KEVvN/A2024-11-26
CVE-2024-49035 [CRITICAL] CWE-269 CVE-2024-49035: An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated attack
An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated attacker to elevate privileges over a network.
nvd
CVE-2025-65041P2CRITICALCVSS 9.8v-2025-12-18
CVE-2025-65041 [CRITICAL] CWE-285 CVE-2025-65041: Improper authorization in Microsoft Partner Center allows an unauthorized attacker to elevate privil
Improper authorization in Microsoft Partner Center allows an unauthorized attacker to elevate privileges over a network.
nvd
CVE-2026-24303P2CRITICALCVSS 9.6v-2026-04-23
CVE-2026-24303 [CRITICAL] CWE-284 CVE-2026-24303: Improper access control in Microsoft Partner Center allows an authorized attacker to elevate privile
Improper access control in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.
nvd
CVE-2025-29814P2HIGHCVSS 8.8v-2025-03-21
CVE-2025-29814 [HIGH] CWE-20 CVE-2025-29814: Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileg
Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.
nvd
CVE-2026-34327P3HIGHCVSS 8.2v-2026-05-07
CVE-2026-34327 [HIGH] CWE-610 CVE-2026-34327: Externally controlled reference to a resource in another sphere in Microsoft Partner Center allows a
Externally controlled reference to a resource in another sphere in Microsoft Partner Center allows an unauthorized attacker to perform spoofing over a network.
nvd