Microsoft Office Purview
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Microsoft Office Purview.
By the Year
In 2026 there have been 2 vulnerabilities in Microsoft Office Purview with an average score of 8.6 out of ten. Last year, in 2025 Office Purview had 3 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Office Purview in 2026 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2026 is greater by 0.37.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 2 | 8.60 |
| 2025 | 3 | 8.23 |
It may take a day or so for new Office Purview vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Office Purview Security Vulnerabilities
Mar 2026: Microsoft Purview Elevation of Privilege Vulnerability
CVE-2026-26138
8.6 - High
- March 19, 2026
Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network.
SSRF
Mar 2026: Microsoft Purview Elevation of Privilege Vulnerability
CVE-2026-26139
8.6 - High
- March 19, 2026
Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network.
SSRF
Dec 2025: Microsoft Purview eDiscovery Remote Code Execution Vulnerability
CVE-2025-64676
7.2 - High
- December 18, 2025
'.../...//' in Microsoft Purview allows an authorized attacker to execute code over a network.
Path Traversal: '.../...//'
Jul 2025: Microsoft Purview Elevation of Privilege Vulnerability
CVE-2025-53762
8.7 - High
- July 18, 2025
Permissive list of allowed inputs in Microsoft Purview allows an authorized attacker to elevate privileges over a network.
Allowlist / Allow List
Jan 2025: Microsoft Purview Information Disclosure Vulnerability
CVE-2025-21385
8.8 - High
- January 09, 2025
A Server-Side Request Forgery (SSRF) vulnerability in Microsoft Purview allows an authorized attacker to disclose information over a network.
SSRF
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Office Purview or by Microsoft? Click the Watch button to subscribe.
