Microsoft Defender Portal Spoofing Vulnerability

Vulnerability

A spoofing vulnerability has been identified in the Microsoft 365 Defender Portal. This vulnerability allows for improper neutralization of input during web page generation, potentially leading to cross-site scripting issues. The vulnerability is present in the Microsoft Defender Portal and has been assessed with a CVSS base score of 8.3, indicating a critical severity level.

Impact

Exploitation of this vulnerability could lead to spoofing attacks, allowing an attacker to impersonate another user or entity.

Added: Nov 20, 2025, 11:18 PM

Updated: Nov 20, 2025, 11:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

6.4

remediation

0.0

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

6.4

remediation

0.0

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Defender Portal Spoofing Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating