Azure IoT Explorer allows unauthorized network information disclosure

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.5

Azure IoT Explorer allows unauthorized network information disclosure

CVE-2026-23664

Summary

An issue in Azure IoT Explorer allows hackers to access sensitive information over the network if they shouldn't be able to. This could lead to data breaches or unauthorized access to IoT devices. Update Azure IoT Explorer to the latest version to fix this issue.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
microsoft	azure_iot_explorer	<= 0.15.13	–

Original title

Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network.

Original description

Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network.

nvd CVSS3.1 7.5

Vulnerability type

CWE-923

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23664

Published: 10 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026