Account Microsoft Account

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Microsoft Account.

Recent Microsoft Account Security Advisories

Advisory Title Published
CVE-2026-41184 CVE-2026-41184 ServiceAccount token disclosure via install-cni container logs May 30, 2026
CVE-2026-46193 CVE-2026-46193 xfrm: ah: account for ESN high bits in async callbacks May 29, 2026
CVE-2026-43107 CVE-2026-43107 xfrm: account XFRMA_IF_ID in aevent size calculation May 7, 2026
CVE-2026-32079 CVE-2026-32079 Web Account Manager Information Disclosure Vulnerability April 14, 2026
CVE-2026-31416 CVE-2026-31416 netfilter: nfnetlink_log: account for netlink header size April 14, 2026
CVE-2026-21264 CVE-2026-21264 Microsoft Account Spoofing Vulnerability January 22, 2026
CVE-2024-3177 CVE-2024-3177 Bypassing mountable secrets policy imposed by the ServiceAccount admission plugin January 2, 2026
CVE-2007-2768 CVE-2007-2768 OpenSSH when using OPIE (One-Time Passwords in Everything) for PAM allows remote attackers to determine the existence of certain user accounts which displays a different response if the user account exists and is configured to use one-t January 1, 2026
CVE-2025-22058 CVE-2025-22058 udp: Fix memory accounting leak. January 1, 2026
CVE-2025-38190 CVE-2025-38190 atm: Revert atm_account_tx() if copy_from_iter_full() fails. January 1, 2026

By the Year

In 2026 there have been 0 vulnerabilities in Microsoft Account. Last year, in 2025 Account had 1 security vulnerability published. Right now, Account is on track to have less security vulnerabilities in 2026 than it did last year.

Year Vulnerabilities Average Score
2026 0 0.00
2025 1 8.20

It may take a day or so for new Account vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Account Security Vulnerabilities

Jan 2025: Microsoft Account Elevation of Privilege Vulnerability
CVE-2025-21396 8.2 - High - January 29, 2025

Missing authorization in Microsoft Account allows an unauthorized attacker to elevate privileges over a network.

AuthZ

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Microsoft Account or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

subscribe