📧 info@ciso.sa | 📱 +966550939344 | Riyadh, Kingdom of Saudi Arabia
About FAQ Contact Us Terms of Service Privacy Policy 🌐 العربية
🔐

Welcome — Sign in or create an account for full access.

🔑 Sign In ✨ Register
🌐 العربية Sign In Create Account
🔧 Scheduled Maintenance — Saturday 2:00-4:00 AM AST. Some features may be temporarily unavailable.    ●   
💎
Pro Plan 50% Off Unlock all AI features, unlimited reports, and priority support. Upgrade
Search Center
ESC to close
navigate open Ctrl+K search
CISO Consulting
Global vulnerability Information Technology CRITICAL 48m Global vulnerability Enterprise Software and Cloud Services HIGH 1h Global vulnerability Information Technology, Security Infrastructure CRITICAL 1h Global vulnerability Industrial Control Systems / Manufacturing HIGH 3h Global general Artificial Intelligence and Cybersecurity MEDIUM 3h Global vulnerability Software/Cloud Services HIGH 3h Global vulnerability Network Infrastructure HIGH 4h Global vulnerability Mobile Device Management / Enterprise Security CRITICAL 4h Global vulnerability Operating Systems/Security Software CRITICAL 5h Global vulnerability Software Development and Technology CRITICAL 5h Global vulnerability Information Technology CRITICAL 48m Global vulnerability Enterprise Software and Cloud Services HIGH 1h Global vulnerability Information Technology, Security Infrastructure CRITICAL 1h Global vulnerability Industrial Control Systems / Manufacturing HIGH 3h Global general Artificial Intelligence and Cybersecurity MEDIUM 3h Global vulnerability Software/Cloud Services HIGH 3h Global vulnerability Network Infrastructure HIGH 4h Global vulnerability Mobile Device Management / Enterprise Security CRITICAL 4h Global vulnerability Operating Systems/Security Software CRITICAL 5h Global vulnerability Software Development and Technology CRITICAL 5h Global vulnerability Information Technology CRITICAL 48m Global vulnerability Enterprise Software and Cloud Services HIGH 1h Global vulnerability Information Technology, Security Infrastructure CRITICAL 1h Global vulnerability Industrial Control Systems / Manufacturing HIGH 3h Global general Artificial Intelligence and Cybersecurity MEDIUM 3h Global vulnerability Software/Cloud Services HIGH 3h Global vulnerability Network Infrastructure HIGH 4h Global vulnerability Mobile Device Management / Enterprise Security CRITICAL 4h Global vulnerability Operating Systems/Security Software CRITICAL 5h Global vulnerability Software Development and Technology CRITICAL 5h
Vulnerabilities

CVE-2026-47655

Medium
CWE-200 — Weakness Type
Published: Jun 4, 2026  ·  Modified: Jun 7, 2026  ·  Source: NVD
CVSS v3
6.5
🔗 NVD Official
📄 Description (English)

Exposure of sensitive information to an unauthorized actor in Microsoft Graph allows an authorized attacker to disclose information over a network.

🤖 AI Executive Summary

CVE-2026-47655 is a medium-severity information disclosure vulnerability in Microsoft Graph that allows authorized attackers to access sensitive data over the network. While no public exploit exists and patches are unavailable, the vulnerability poses significant risk to Saudi organizations heavily dependent on Microsoft cloud services. Immediate mitigation through access controls and monitoring is essential until Microsoft releases patches.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: Jun 5, 2026 03:01
🇸🇦 Saudi Arabia Impact Assessment
High impact on Saudi banking sector (SAMA-regulated institutions), government agencies (NCA oversight), healthcare providers using Microsoft 365, and energy sector organizations. Saudi Aramco and major telecom operators (STC, Mobily) utilizing Microsoft Graph for enterprise collaboration face significant risk. Government digital transformation initiatives and e-services platforms dependent on Microsoft cloud infrastructure are particularly vulnerable to insider threats and compromised account scenarios.
🏢 Affected Saudi Sectors
Banking and Financial Services Government and Public Administration Healthcare and Medical Services Energy and Utilities Telecommunications Education Insurance
⚖️ Saudi Risk Score (AI)
6.8
/ 10.0
🔧 Remediation Steps (English)
Immediate Actions:

1. Audit all Microsoft Graph API permissions and access tokens across your organization

2. Review and restrict Graph API scopes to minimum required permissions (principle of least privilege)

3. Implement conditional access policies to restrict Graph API access by location, device compliance, and risk level

4. Enable Azure AD sign-in logs monitoring and alert on suspicious Graph API access patterns

5. Enforce multi-factor authentication (MFA) for all accounts with Graph API access

6. Review service principals and application permissions quarterly



Detection Rules:

7. Monitor for unusual Graph API calls accessing sensitive resources (mail, calendar, contacts, files)

8. Alert on Graph API access from non-corporate IP ranges or unusual geographic locations

9. Track failed authentication attempts to Graph API endpoints

10. Monitor for bulk data exports or unusual data access volumes



Compensating Controls:

11. Implement data loss prevention (DLP) policies on sensitive information accessed via Graph

12. Use Azure Information Protection to classify and protect sensitive data

13. Enable audit logging for all Graph API operations

14. Implement network segmentation to limit Graph API access

15. Monitor for CVE-2026-47655 patches from Microsoft and apply immediately upon release
🔧 خطوات المعالجة (العربية)
الإجراءات الفورية:

1. تدقيق جميع أذونات Microsoft Graph وتوكنات الوصول عبر المنظمة

2. مراجعة وتقييد نطاقات Graph API للأذونات المطلوبة فقط (مبدأ أقل امتياز)

3. تنفيذ سياسات الوصول الشرطي لتقييد وصول Graph API حسب الموقع والامتثال للجهاز ومستوى المخاطر

4. تفعيل مراقبة سجلات تسجيل الدخول في Azure AD والتنبيه على أنماط وصول Graph API المريبة

5. فرض المصادقة متعددة العوامل (MFA) لجميع الحسابات التي تحتوي على وصول Graph API

6. مراجعة مبادئ الخدمة والأذونات التطبيقية ربع سنوياً



قواعد الكشف:

7. مراقبة استدعاءات Graph API غير العادية التي تصل إلى الموارد الحساسة (البريد والتقويم والجهات والملفات)

8. التنبيه على وصول Graph API من نطاقات IP غير الشركات أو المواقع الجغرافية غير العادية

9. تتبع محاولات المصادقة الفاشلة لنقاط نهاية Graph API

10. مراقبة تصدير البيانات الضخمة أو أحجام الوصول إلى البيانات غير العادية



الضوابط التعويضية:

11. تنفيذ سياسات منع فقدان البيانات (DLP) على المعلومات الحساسة التي يتم الوصول إليها عبر Graph

12. استخدام Azure Information Protection لتصنيف وحماية البيانات الحساسة

13. تفعيل تسجيل التدقيق لجميع عمليات Graph API

14. تنفيذ تقسيم الشبكة لتقييد وصول Graph API

15. مراقبة تصحيحات CVE-2026-47655 من Microsoft وتطبيقها فوراً عند الإصدار
📋 Regulatory Compliance Mapping
🟢 NCA ECC 2024
ECC 2024 A.5.1.1 - Access Control Policy ECC 2024 A.5.2.1 - User Registration and De-registration ECC 2024 A.5.3.1 - Access Rights Review ECC 2024 A.8.1.1 - Information Security Awareness ECC 2024 A.12.4.1 - Event Logging ECC 2024 A.12.4.3 - Administrator and Operator Logs
🔵 SAMA CSF
SAMA CSF ID.AM-1 - Asset Management SAMA CSF PR.AC-1 - Access Control SAMA CSF PR.AC-4 - Access Rights Management SAMA CSF DE.AE-1 - Audit and Accountability SAMA CSF DE.CM-1 - System Monitoring
🟡 ISO 27001:2022
ISO 27001:2022 A.5.3 - Segregation of Duties ISO 27001:2022 A.8.2 - Information Security Awareness ISO 27001:2022 A.8.3 - Information Security in Supplier Relationships ISO 27001:2022 A.9.1 - Access Control ISO 27001:2022 A.9.2 - User Access Management ISO 27001:2022 A.12.4 - Logging
🟣 PCI DSS v4.0.1
PCI DSS 3.2.1 - Access Control Implementation PCI DSS 7.1 - Limit Access to System Components PCI DSS 10.1 - Implement Audit Trails PCI DSS 10.2 - Implement User Identification
📊 CVSS Score
6.5
/ 10.0 — Medium
📊 CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack VectorN — None / Network
Attack ComplexityL — Low / Local
Privileges RequiredL — Low / Local
User InteractionN — None / Network
ScopeU — Unchanged
ConfidentialityH — High
IntegrityN — None / Network
AvailabilityN — None / Network
📋 Quick Facts
Severity Medium
CVSS Score6.5
CWECWE-200
EPSS0.15%
Exploit No
Patch ✗ No
Published 2026-06-04
Source Feed nvd
Views 1
🇸🇦 Saudi Risk Score
6.8
/ 10.0 — Saudi Risk
Priority: HIGH
🏷️ Tags
CWE-200
⚡ Actions
🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details
Share this CVE
LinkedIn X / Twitter WhatsApp Telegram
📣 Found this valuable?
Share it with your cybersecurity network
in LinkedIn 𝕏 X / Twitter 💬 WhatsApp ✈ Telegram
🍪 Privacy Preferences
CISO Consulting — Compliant with Saudi Personal Data Protection Law (PDPL)
We use cookies and similar technologies to provide the best experience on our platform. You can choose which types you accept.
🔒
Essential Always On
Required for the website to function properly. Cannot be disabled.
📋 Sessions, CSRF tokens, authentication, language preferences
📊
Analytics
Help us understand how visitors use the site and improve performance.
📋 Page views, session duration, traffic sources, performance metrics
⚙️
Functional
Enable enhanced features like content personalization and preferences.
📋 Dark/light theme, font size, custom dashboards, saved filters
📣
Marketing
Used to deliver content and ads relevant to your interests.
📋 Campaign tracking, retargeting, social media analytics
Privacy Policy →
CISO AI Assistant
Ask anything · Documents · Support
🔐

Introduce Yourself

Enter your details to access the full assistant

Your info is private and never shared
💬
CyberAssist
Online · responds in seconds
5 / 5
🔐 Verify Your Identity

Enter your email to receive a verification code before submitting a support request.

Enter to send · / for commands 0 / 2000
CISO AI · Powered by Anthropic Claude
✦ Quick Survey Help Us Improve CISO Consulting Your feedback shapes the future of our platform — takes less than 2 minutes.
⚠ Please answer this question to continue

How would you rate your overall experience with our platform?

Rate from 1 (poor) to 5 (excellent)

🎉
Thank you!
Your response has been recorded.