Product

Enterprise Security Token Service

1 brief RSS

CVE-2026-40379 Microsoft Enterprise Security Token Service (ESTS) Spoofing Vulnerability

CVE-2026-40379 is a spoofing vulnerability in Microsoft Enterprise Security Token Service (ESTS) where exposure of sensitive information in Azure Entra ID allows an unauthorized attacker to perform spoofing over a network.

Enterprise Security Token Service +1 entra_id spoofing cloud

2r 1t 8h ago