Microsoft Dataverse
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Microsoft Dataverse.
Recent Microsoft Dataverse Security Advisories
| Advisory | Title | Published |
|---|---|---|
| CVE-2025-29826 | CVE-2025-29826 Microsoft Dataverse Elevation of Privilege Vulnerability | May 13, 2025 |
| CVE-2025-47732 | CVE-2025-47732 Microsoft Dataverse Remote Code Execution Vulnerability | May 9, 2025 |
| CVE-2025-24053 | CVE-2025-24053 Microsoft Dataverse Elevation of Privilege Vulnerability | March 13, 2025 |
| CVE-2024-38139 | CVE-2024-38139 Microsoft Dataverse Elevation of Privilege Vulnerability | October 15, 2024 |
| CVE-2024-35260 | CVE-2024-35260 Microsoft Dataverse Remote Code Execution Vulnerability | July 9, 2024 |
By the Year
In 2026 there have been 0 vulnerabilities in Microsoft Dataverse. Last year, in 2025 Dataverse had 4 security vulnerabilities published. Right now, Dataverse is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 4 | 7.98 |
| 2024 | 2 | 8.40 |
It may take a day or so for new Dataverse vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Dataverse Security Vulnerabilities
May 2025: Microsoft Dataverse Elevation of Privilege Vulnerability
CVE-2025-29826
7.3 - High
- May 13, 2025
Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
Improper Handling of Insufficient Permissions or Privileges
May 2025: Microsoft Dataverse Remote Code Execution Vulnerability
CVE-2025-47732
8.7 - High
- May 08, 2025
Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.
Marshaling, Unmarshaling
Mar 2025: Microsoft Dataverse Remote Code Execution Vulnerability
CVE-2025-29807
8.7 - High
- March 21, 2025
Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network.
Marshaling, Unmarshaling
Mar 2025: Microsoft Dataverse Elevation of Privilege Vulnerability
CVE-2025-24053
7.2 - High
- March 13, 2025
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
AuthZ
Microsoft Dataverse Auth Escalation (CVE-2024-38139)
CVE-2024-38139
8.8 - High
- October 15, 2024
Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network.
authentification
Jun 2024: Microsoft Dataverse Remote Code Execution Vulnerability
CVE-2024-35260
8 - High
- June 27, 2024
An authenticated attacker can exploit an untrusted search path vulnerability in Microsoft Dataverse to execute code over a network.
Untrusted Path
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Dataverse or by Microsoft? Click the Watch button to subscribe.
