Bing
by Microsoft
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-33819 | Cri | 0.65 | 10.0 | 0.01 | Apr 23, 2026 | Deserialization of untrusted data in Microsoft Bing allows an unauthorized attacker to execute code over a network. | ||
| CVE-2026-32186 | Cri | 0.65 | 10.0 | 0.01 | Apr 3, 2026 | Server-side request forgery (ssrf) in Microsoft Bing allows an unauthorized attacker to elevate privileges over a network. | ||
| CVE-2026-26120 | Med | 0.42 | 6.5 | 0.01 | Mar 19, 2026 | Server-side request forgery (ssrf) in Microsoft Bing allows an unauthorized attacker to perform tampering over a network. | ||
| CVE-2026-45650 | Med | 0.28 | 4.3 | 0.01 | Jun 9, 2026 | User interface (ui) misrepresentation of critical information in Microsoft Bing allows an unauthorized attacker to perform spoofing over a network. | ||
| CVE-2025-21355 | 0.01 | — | 0.01 | Feb 19, 2025 | Missing Authentication for Critical Function in Microsoft Bing allows an unauthorized attacker to execute code over a network | |||
| CVE-2014-1670 | 0.01 | — | 0.14 | Jan 25, 2014 | The Microsoft Bing application before 4.2.1 for Android allows remote attackers to install arbitrary APK files via vectors involving a crafted DNS response. |
- risk 0.65cvss 10.0epss 0.01
Deserialization of untrusted data in Microsoft Bing allows an unauthorized attacker to execute code over a network.
- risk 0.65cvss 10.0epss 0.01
Server-side request forgery (ssrf) in Microsoft Bing allows an unauthorized attacker to elevate privileges over a network.
- risk 0.42cvss 6.5epss 0.01
Server-side request forgery (ssrf) in Microsoft Bing allows an unauthorized attacker to perform tampering over a network.
- risk 0.28cvss 4.3epss 0.01
User interface (ui) misrepresentation of critical information in Microsoft Bing allows an unauthorized attacker to perform spoofing over a network.
- CVE-2025-21355Feb 19, 2025risk 0.01cvss —epss 0.01
Missing Authentication for Critical Function in Microsoft Bing allows an unauthorized attacker to execute code over a network
- CVE-2014-1670Jan 25, 2014risk 0.01cvss —epss 0.14
The Microsoft Bing application before 4.2.1 for Android allows remote attackers to install arbitrary APK files via vectors involving a crafted DNS response.