{"id":"CVE-2026-23664","details":"Improper restriction of communication channel to intended endpoints in Azure IoT Explorer allows an unauthorized attacker to disclose information over a network.","modified":"2026-03-14T15:05:45.115878Z","published":"2026-03-10T18:18:14.523Z","references":[{"type":"FIX","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23664"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/azure/azure-iot-explorer","events":[{"introduced":"0"},{"fixed":"e37fc0471dd7b112eb61b64f2f83a5f013e70316"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"0.15.13"}]}}],"versions":["0.14.0","pnpRefresh1","v0.10.0","v0.10.1","v0.10.10","v0.10.11","v0.10.12","v0.10.13","v0.10.14","v0.10.15","v0.10.16","v0.10.17","v0.10.18","v0.10.19","v0.10.2","v0.10.3","v0.10.4","v0.10.5","v0.10.6","v0.10.7","v0.10.8","v0.10.9","v0.11.1","v0.11.2","v0.11.3","v0.11.4","v0.12.0","v0.13.0","v0.13.1","v0.13.2","v0.13.3","v0.13.4","v0.13.5","v0.13.6","v0.14.1","v0.14.10","v0.14.11","v0.14.12","v0.14.13","v0.14.14","v0.14.2","v0.14.3","v0.14.4","v0.14.5","v0.14.6","v0.14.7","v0.14.8","v0.14.9","v0.15.0","v0.15.1","v0.15.11","v0.15.12","v0.15.2","v0.15.4","v0.15.5","v0.15.6","v0.15.7","v0.15.8","v0.15.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23664.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}