Microsoft

Security Scorecard

Score

25F

Total CVEs

634

Patch Rate

27%

172 patched

Avg Response

1052d

days to patch

Critical Gaps

35

exploitable, no detection

Severity Breakdown

Critical15
High294
Medium264
Low40

Patch Status

Patched172 (27%)
Partial/Workaround31 (5%)
Unpatched431 (68%)

CVEs (645)

CVE IDTitleSeverityScoreDaysPatch
CVE-2026-21521Copilot VulnerabilityHigh7.4-Workaround
CVE-2026-21524Azure Data Explorer API ExposureHigh7.4-Patched
CVE-2026-24305Azure Entra ID Elevation of Privilege VulnerabilityCritical9.3-Patched
CVE-2026-24306Azure Front Door (AFD) Privilege EscalationCritical9.8-Patched
CVE-2026-24307CVE-2026-24307Critical9.3-Patched
CVE-2026-22463Micro.company Form to Chat App XSSMedium6.5-Patched
CVE-2021-47864OSAS Traverse Extension Unquoted Service Path VulnerabilityHigh7.8-Patched
CVE-2025-53516MedDream PACS Premium XSS VulnerabilityMedium6.1-Patched
CVE-2025-54157MedDream PACS Premium XSS VulnerabilityMedium6.1-Patched
CVE-2021-47828Bootp Turbo Unquoted Service Path VulnerabilityHigh7.8-Patched