M365 Change Tracker

← All changes · security · CVE-2026-23663

CVE-2026-23663CriticalMonitor

Microsoft Global Secure Access (GSA) Information Disclosure Vulnerability

Severity Critical  ·  Urgency Monitor

Why it matters: Critical severity (CVSS 7.5)

Elevation of Privilege · Critical · CVSS 7.5. Affects: Microsoft Global Secure Access (GSA).

CVSS 7.5EPSS 0.6%Update published 2026-06-23Source updated 2026-06-23NVD

Affected: Microsoft Global Secure Access (GSA)

Change history

2026-06-23 · First seen

View at Microsoft →