cbcvebase.

Microsoft Dataverse vulnerabilities

5 known vulnerabilities affecting microsoft/microsoft_dataverse.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH4

Vulnerabilities

Page 1 of 1
CVE-2025-47732P2CRITICALCVSS 9.8v-2025-05-08
CVE-2025-47732 [CRITICAL] CWE-502 CVE-2025-47732: Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute co Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.
nvd
CVE-2025-29807P3HIGHCVSS 8.8v-2025-03-21
CVE-2025-29807 [HIGH] CWE-94 CVE-2025-29807: Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute co Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.
nvd
CVE-2024-38139P3HIGHCVSS 8.8v-2024-10-15
CVE-2024-38139 [HIGH] CWE-287 CVE-2024-38139: Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges o Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
nvd
CVE-2025-29826P3HIGHCVSS 8.8≥ 10.0, < 3.4.0.14062025-05-13
CVE-2025-29826 [HIGH] CWE-280 CVE-2025-29826: Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authori Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
nvd
CVE-2025-24053P3HIGHCVSS 7.2v-2025-03-13
CVE-2025-24053 [HIGH] CWE-285 CVE-2025-24053: Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges o Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
nvd
Microsoft Dataverse vulnerabilities | cvebase