CVE Details: CVE-2024-38139

Description

Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.

Published Date: 2024-10-15
Last Modified Date: 2024-10-16
Severity: HIGH
CVSS v3 Score: 8.7
CWE ID: CWE-287
Attack Vector: NETWORK
Attack Complexity: LOW
Privileges Required: HIGH
User Interaction: NONE
Scope: CHANGED
Confidentiality Impact: HIGH
Integrity Impact: HIGH
Availability Impact: NONE

Back to CVE List