Partner Center
by Microsoft
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-24303 | Cri | 0.62 | 9.6 | 0.00 | Apr 23, 2026 | Improper access control in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network. | ||
| CVE-2026-34327 | Hig | 0.53 | 8.2 | 0.01 | May 7, 2026 | Externally controlled reference to a resource in another sphere in Microsoft Partner Center allows an unauthorized attacker to perform spoofing over a network. | ||
| CVE-2024-49035 | 0.12 | — | 0.01 | KEV | Nov 26, 2024 | An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated attacker to elevate privileges over a network. | ||
| CVE-2025-29814 | 0.01 | — | 0.02 | Mar 21, 2025 | Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network. | |||
| CVE-2025-65041 | 0.00 | — | 0.01 | Dec 18, 2025 | Improper authorization in Microsoft Partner Center allows an unauthorized attacker to elevate privileges over a network. |
- risk 0.62cvss 9.6epss 0.00
Improper access control in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.
- risk 0.53cvss 8.2epss 0.01
Externally controlled reference to a resource in another sphere in Microsoft Partner Center allows an unauthorized attacker to perform spoofing over a network.
- risk 0.12cvss —epss 0.01
An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated attacker to elevate privileges over a network.
- CVE-2025-29814Mar 21, 2025risk 0.01cvss —epss 0.02
Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.
- CVE-2025-65041Dec 18, 2025risk 0.00cvss —epss 0.01
Improper authorization in Microsoft Partner Center allows an unauthorized attacker to elevate privileges over a network.