azure web apps (microsoft) — Vulnerabilities

Signals

Monitoring NVD, CISA KEV, EPSS and the Dragons Community ransomware tracker in near-real timeMonitoring NVD, CISA KEV, EPSS and the Dragons Community ransomware tracker in near-real time

Vendors · microsoft · azure web apps

azure web apps

· 1 Criticalmicrosoft · 2 known vulnerabilities

Total

Critical

High

Medium

CISA KEV

CVE-2026-32211CRITICAL 9.1

Apr 2, 2026

Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network.

CVE-2024-38194HIGH 8.4

Sep 10, 2024

An authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network.

All microsoft products All Vendors CVE Database KEV Catalog