VYPR

Dataverse

by Microsoft

CVEs (7)

  • CVE-2025-47732HigMay 8, 2025
    risk 0.57cvss 8.7epss 0.03

    Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.

  • CVE-2025-29807HigMar 21, 2025
    risk 0.57cvss 8.7epss 0.01

    Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.

  • CVE-2024-38139HigOct 15, 2024
    risk 0.57cvss 8.7epss 0.01

    Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

  • CVE-2024-35260HigJun 27, 2024
    risk 0.52cvss 8.0epss 0.01

    An authenticated attacker can exploit an untrusted search path vulnerability in Microsoft Dataverse to execute code over a network.

  • CVE-2025-29826HigMay 13, 2025
    risk 0.48cvss 7.3epss 0.01

    Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

  • CVE-2025-24053HigMar 13, 2025
    risk 0.47cvss 7.2epss 0.01

    Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

  • CVE-2021-24101MedFeb 25, 2021
    risk 0.42cvss 6.5epss 0.03

    Microsoft Dataverse Information Disclosure Vulnerability