Azure IoT Explorer
by Microsoft
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-1416 | Hig | 0.58 | 8.8 | 0.06 | Jul 14, 2020 | An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies, aka 'Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability'. | ||
| CVE-2022-23256 | Hig | 0.53 | 8.1 | 0.02 | Feb 9, 2022 | Azure Data Explorer Spoofing Vulnerability | ||
| CVE-2026-23662 | 0.00 | — | 0.01 | Mar 10, 2026 | Missing authentication for critical function in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network. | |||
| CVE-2026-23661 | 0.00 | — | 0.01 | Mar 10, 2026 | Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network. | |||
| CVE-2026-26121 | 0.00 | — | 0.01 | Mar 10, 2026 | Server-side request forgery (ssrf) in Azure IoT Explorer allows an unauthorized attacker to perform spoofing over a network. | |||
| CVE-2026-23664 | 0.00 | — | 0.01 | Mar 10, 2026 | Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network. | |||
| CVE-2026-21528 | 0.00 | — | 0.01 | Feb 10, 2026 | Binding to an unrestricted ip address in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network. | |||
| CVE-2026-21524 | 0.00 | — | 0.01 | Jan 22, 2026 | Exposure of sensitive information to an unauthorized actor in Azure Data Explorer allows an unauthorized attacker to disclose information over a network. |
- risk 0.58cvss 8.8epss 0.06
An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies, aka 'Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability'.
- risk 0.53cvss 8.1epss 0.02
Azure Data Explorer Spoofing Vulnerability
- CVE-2026-23662Mar 10, 2026risk 0.00cvss —epss 0.01
Missing authentication for critical function in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network.
- CVE-2026-23661Mar 10, 2026risk 0.00cvss —epss 0.01
Cleartext transmission of sensitive information in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network.
- CVE-2026-26121Mar 10, 2026risk 0.00cvss —epss 0.01
Server-side request forgery (ssrf) in Azure IoT Explorer allows an unauthorized attacker to perform spoofing over a network.
- CVE-2026-23664Mar 10, 2026risk 0.00cvss —epss 0.01
Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network.
- CVE-2026-21528Feb 10, 2026risk 0.00cvss —epss 0.01
Binding to an unrestricted ip address in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network.
- CVE-2026-21524Jan 22, 2026risk 0.00cvss —epss 0.01
Exposure of sensitive information to an unauthorized actor in Azure Data Explorer allows an unauthorized attacker to disclose information over a network.