Every CVE whose affected-product data names Microsoft Graph, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2026-47655 — CVSS 6.5 (medium): Exposure of sensitive information to an unauthorized actor in Microsoft Graph allows an authorized attacker to disclose information over a…
CVE-2023-49282 — CVSS 5.4 (medium): msgraph-sdk-php is the Microsoft Graph Library for PHP. The Microsoft Graph PHP SDK published packages which contained test code that…
CVE-2023-49283 — CVSS 5.4 (medium): microsoft-graph-core the Microsoft Graph Library for PHP. The Microsoft Graph Beta PHP SDK published packages which contained test code…