Purview

purview

Vendor: Microsoft • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-26139 1Microsoft 1Purview Mar 24, 2026 Mar 19, 2026 N/A· v4 8.6 HIGH· v3 N/A· v2 Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network.
CVE-2026-26138 1Microsoft 1Purview Mar 24, 2026 Mar 19, 2026 N/A· v4 10.0 CRITICAL· v3 N/A· v2 Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network.
CVE-2025-64676 1Microsoft 1Purview Feb 10, 2026 Dec 18, 2025 N/A· v4 7.2 HIGH· v3 N/A· v2 '.../...//' in Microsoft Purview allows an authorized attacker to execute code over a network.
CVE-2025-53762 1Microsoft 1Purview Aug 14, 2025 Jul 18, 2025 N/A· v4 9.9 CRITICAL· v3 N/A· v2 Permissive list of allowed inputs in Microsoft Purview allows an authorized attacker to elevate privileges over a network.
CVE-2025-21385 1Microsoft 1Purview Feb 5, 2025 Jan 9, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A Server-Side Request Forgery (SSRF) vulnerability in Microsoft Purview allows an authorized attacker to disclose information over a network.