本ページは microsoft azure_active_directory に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2026-45480 | Improper authentication in Azure Active Directory allows an unauthorized attacker to elevate privileges over a network. | [email protected] | 10.0 | 0.57% | 2026-06-19 | 2026-06-24 |
| CVE-2024-21381 | Microsoft Azure Active Directory B2C Spoofing Vulnerability | [email protected] | 6.8 | 0.42% | 2024-02-13 | 2026-06-17 |
| CVE-2021-42306 | An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential on an Azure AD Application or Service Principal (which is not recommended). This vulnerability allows a user or service in the tenant with application read access to read the private key data that was added to the application. Azure AD addressed this vulnerability by preventing disclosure of any private key values added to th | [email protected] | 8.1 | 3.08% | 2021-11-23 | 2026-06-17 |