[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-32211":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-05T09:10:37.156Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":40,"aliases":41,"duplicate_of":9,"upstream":42,"downstream":43,"duplicates":44,"related":45,"reserved_at":9,"published_at":46,"modified_at":47,"state":48,"summary":49,"references_raw":58,"kevs":66,"epss":67,"epss_history":70,"metrics":72,"affected":81},"CVE-2026-32211","Missing authentication for critical function in Azure MCP Server allows an unauthorized attacker to disclose information over a network.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-306","Missing Authentication for Critical Function","The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.","weakness","Draft","Base","High",[20,24,28,32,36],{"id":21,"name":22,"techniques":23},"CAPEC-12","Choosing Message Identifier",[],{"id":25,"name":26,"techniques":27},"CAPEC-166","Force the System to Reset Values",[],{"id":29,"name":30,"techniques":31},"CAPEC-216","Communication Channel Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-36","Using Unpublished Interfaces or Functionality",[],{"id":37,"name":38,"techniques":39},"CAPEC-62","Cross Site Request Forgery",[],[],[],[],[],[],[],"2026-04-02T23:27:01.785Z","2026-04-03T17:22:49.607Z","Awaiting Analysis",{"cisa_kev":50,"cisa_ransomware":50,"cisa_vendor":9,"epss_severity":51,"epss_score":52,"severity":53,"severity_score":54,"severity_version":55,"severity_source":56,"severity_vector":57,"severity_status":48},false,"low",0.00055,"critical",9.1,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C",[59],{"url":60,"sources":61,"tags":63},"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32211",[56,62],"nvd",[64,65],"Vendor Advisory","Patch",[],{"date":68,"score":52,"percentile":69},"2026-04-03",0.17386,[71],{"date":68,"score":52,"percentile":69},[73,78],{"source":56,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":74,"cvss_v4_0":9},{"baseScore":54,"baseSeverity":75,"vectorString":57,"impactScore":76,"exploitabilityScore":77},"CRITICAL",8.7,10,{"source":62,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":79,"cvss_v4_0":9},{"baseScore":54,"baseSeverity":75,"vectorString":80,"impactScore":76,"exploitabilityScore":77},"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",[82],{"ecosystem":9,"name":83,"vendor":84,"product":85,"cpe_part":86,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":87},"Azure Web Apps","microsoft","azure web apps","a",[88],{"version":89,"is_range":50,"range_type":56,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"-"]