VYPR
Vendor

IQSS

Products
1
CVEs
8
Across products
8
Status
Private

Products

1

Recent CVEs

8
  • CVE-2026-1879MedApr 1, 2026
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was detected in Harvard University IQSS Dataverse up to 6.8. This affects an unknown function of the file /ThemeAndWidgets.xhtml of the component Theme Customization. Performing a manipulation of the argument uploadLogo results in unrestricted upload. Remote…

  • CVE-2024-35260Jun 27, 2024
    risk 0.01cvss epss 0.01

    An authenticated attacker can exploit an untrusted search path vulnerability in Microsoft Dataverse to execute code over a network.

  • CVE-2021-24101Feb 25, 2021
    risk 0.01cvss epss 0.03

    Microsoft Dataverse Information Disclosure Vulnerability

  • CVE-2025-29826May 13, 2025
    risk 0.00cvss epss 0.01

    Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

  • CVE-2025-47732May 8, 2025
    risk 0.00cvss epss 0.03

    Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.

  • CVE-2025-29807Mar 21, 2025
    risk 0.00cvss epss 0.01

    Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.

  • CVE-2025-24053Mar 13, 2025
    risk 0.00cvss epss 0.01

    Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

  • CVE-2024-38139Oct 15, 2024
    risk 0.00cvss epss 0.01

    Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.