← All advisories

Critical severity9.1NVD Advisory· Published Jun 4, 2026

CVE-2026-48579

CVE-2026-48579

Description

Improper authorization in Microsoft Exchange Online allows an unauthorized attacker to disclose information over a network.

Affected products

1

Microsoft/Exchange Onlinellm-create

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48579nvd

News mentions

1

Microsoft: Seven Critical and High Vulnerabilities Disclosed on June 4th
Vypr Intelligence · Jun 4, 2026