CVE Published: 15/10/2024 |
CVE Updated: 12/11/2024 |
CVE Year: 2024 Source: microsoft |
Vendor: Microsoft |
Product: Microsoft Dataverse Status : PUBLISHED
CVE-2024-38139 Description
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
Metrics
CVSS Version: 3.1 |
Base Score: 8.7 HIGH Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N/E:P/RL:O/RC:C