All 9 CVE vulnerabilities found in Microsoft Entra, with AI-generated Chinese analysis, references, and POCs.
Vendor: Microsoft
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-42901 | Microsoft Entra ID Elevation of Privilege Vulnerability CWE-346 | 10.0 | Critical | 2026-05-22 |
| CVE-2026-33843 | Microsoft Azure Active Directory B2C Elevation of Privilege Vulnerability CWE-288 | 9.1 | Critical | 2026-05-22 |
| CVE-2026-40379 | Azure Entra ID Spoofing Vulnerability CWE-200 | 9.3 | Critical | 2026-05-12 |
| CVE-2026-35431 | Microsoft Entra ID Entitlement Management Spoofing Vulnerability CWE-918 | 10.0 | Critical | 2026-04-23 |
| CVE-2026-24305 | Azure Entra ID Elevation of Privilege Vulnerability CWE-285 | 9.3 | Critical | 2026-01-22 |
| CVE-2025-59246 | Azure Entra ID Elevation of Privilege Vulnerability CWE-306 | 9.8 | Critical | 2025-10-09 |
| CVE-2025-59218 | Azure Entra ID Elevation of Privilege Vulnerability CWE-284 | 9.6 | Critical | 2025-10-09 |
| CVE-2025-55241 | Azure Entra ID Elevation of Privilege Vulnerability CWE-287 | 10.0 | Critical | 2025-09-04 |
| CVE-2024-43477 | Microsoft Entra ID Elevation of Privilege Vulnerability CWE-284 | 7.5 | High | 2024-08-23 |
All 9 known CVE vulnerabilities affecting Microsoft Entra with full Chinese analysis, references, and POCs where available.