Vulnerabilities > CVE-2024-38190 - Missing Authorization vulnerability in Microsoft Power Platform

047910
CVSS 8.6 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
microsoft
CWE-862
NVD
Published: 2024-10-15
Updated: 2024-11-08

Summary

Missing authorization in Power Platform allows an unauthenticated attacker to view sensitive information through a network attack vector.

Vulnerable Configurations

Part Description Count
Application
Microsoft
1

Common Weakness Enumeration (CWE)

References