Microsoft.Data.OData
by Microsoft
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-8269 | Hig | 0.54 | 7.5 | 0.26 | Sep 13, 2018 | A denial of service vulnerability exists when OData Library improperly handles web requests, aka "OData Denial of Service Vulnerability." This affects Microsoft.Data.OData. | ||
| CVE-2025-29826 | 0.00 | — | 0.01 | May 13, 2025 | Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network. | |||
| CVE-2025-47732 | 0.00 | — | 0.03 | May 8, 2025 | Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network. | |||
| CVE-2025-29807 | 0.00 | — | 0.01 | Mar 21, 2025 | Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network. | |||
| CVE-2025-24053 | 0.00 | — | 0.01 | Mar 13, 2025 | Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network. | |||
| CVE-2024-38139 | 0.00 | — | 0.01 | Oct 15, 2024 | Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network. |
- risk 0.54cvss 7.5epss 0.26
A denial of service vulnerability exists when OData Library improperly handles web requests, aka "OData Denial of Service Vulnerability." This affects Microsoft.Data.OData.
- CVE-2025-29826May 13, 2025risk 0.00cvss —epss 0.01
Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
- CVE-2025-47732May 8, 2025risk 0.00cvss —epss 0.03
Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.
- CVE-2025-29807Mar 21, 2025risk 0.00cvss —epss 0.01
Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.
- CVE-2025-24053Mar 13, 2025risk 0.00cvss —epss 0.01
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
- CVE-2024-38139Oct 15, 2024risk 0.00cvss —epss 0.01
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.