Skip to content

Identity & Access Management · head-to-head

Microsoft Identity vs Okta

On-prem IAM/IGA/PAM/MFA: directories, federation, privileged access, SSO. Counts are scoped to this segment and the selected published-date window. Microsoft Identity carries 1.8× the disclosed CVE volume of Okta. Volume reflects disclosure practice and install base as much as code quality — read it with the severity mix. Sourced from the NIST NVD; lower counts indicate a smaller disclosed vulnerability surface — not necessarily lower risk.

01

Disclosure record

Bars are normalized per row to the larger value; the leading count is emphasized.

Metric comparison: Microsoft Identity versus Okta. Each row gives the metric, Microsoft Identity’s count on the left and Okta’s count on the right.
Microsoft IdentityMetricOkta
9Total CVEs5
0Critical0
3High3
6Medium1
0Low1
6Open in latest0
02

Risk profile

Each severity band as a share of the vendor's own total — strips out raw volume so the profiles compare directly.

Microsoft Identity

0.0% critical
Critical
00.0%
High
333.3%
Medium
666.7%
Low
00.0%

Okta

0.0% critical
Critical
00.0%
High
360.0%
Medium
120.0%
Low
120.0%
03

Recent activity

Latest in-window disclosures per vendor, newest first. Each ID links to its NVD record.

Microsoft Identity

Recent CVEs affecting Microsoft Identity
CVESeverityCVSSPublished
CVE-2025-26685(opens NVD record)Medium
6.5
May 13, 2025
CVE-2021-36949(opens NVD record)High
7.1
Aug 12, 2021
CVE-2019-1000(opens NVD record)Medium
5.3
May 16, 2019
CVE-2018-16794(opens NVD record)High
8.6
Sep 18, 2018
CVE-2017-8613(opens NVD record)High
8.1
Jun 29, 2017
CVE-2015-1757(opens NVD record)Medium
4.3
Jun 10, 2015

Okta

Recent CVEs affecting Okta
CVESeverityCVSSPublished
CVE-2024-9191(opens NVD record)High
7.1
Nov 1, 2024
CVE-2024-7061(opens NVD record)Medium
5.5
Aug 7, 2024
CVE-2023-0093(opens NVD record)High
8.8
Mar 6, 2023
CVE-2022-1697(opens NVD record)Low
3.9
Sep 6, 2022
CVE-2022-1030(opens NVD record)High
8.8
Mar 23, 2022

Track new CVEs for these vendors

Get an email the moment a new vulnerability is disclosed for the products you rely on.

Get alerts