cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-38190,https://securityvulnerability.io/vulnerability/CVE-2024-38190,Power Platform Information Disclosure Vulnerability,"The vulnerability in Microsoft Power Platform arises from a lack of adequate authorization checks, enabling an unauthenticated attacker to gain access to sensitive information. This security gap can be exploited through network attack vectors, potentially leading to unauthorized data exposure. Organizations relying on Power Platform should prioritize assessing their exposure to this issue and implementing necessary security measures to mitigate the risk.",Microsoft,Microsoft Power Platform,8.6,HIGH,0.0023399998899549246,false,false,false,false,,false,false,2024-10-15T23:15:00.000Z,0
CVE-2024-35260,https://securityvulnerability.io/vulnerability/CVE-2024-35260,Microsoft Dataverse Remote Code Execution Vulnerability,"An untrusted search path vulnerability in Microsoft Dataverse enables authenticated attackers to exploit the system, allowing remote code execution across a network. This vulnerability can potentially lead to unauthorized access and manipulation of sensitive data, emphasizing the importance of implementing security measures and updates to mitigate risks associated with such vulnerabilities.",Microsoft,Microsoft Power Platform,8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-06-27T18:15:00.000Z,0
CVE-2023-36019,https://securityvulnerability.io/vulnerability/CVE-2023-36019,Microsoft Power Platform Connector Spoofing Vulnerability,Microsoft Power Platform Connector Spoofing Vulnerability,Microsoft,"Microsoft Power Platform,Azure Logic Apps",9.6,CRITICAL,0.0007800000021234155,false,false,false,false,,false,false,2023-12-12T18:15:00.000Z,0