Microsoft Power Platform
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Microsoft Power Platform.
Recent Microsoft Power Platform Security Advisories
| Advisory | Title | Published |
|---|---|---|
| CVE-2024-38190 | CVE-2024-38190 Power Platform Information Disclosure Vulnerability | October 15, 2024 |
| CVE-2023-36019 | Microsoft Power Platform Connector Spoofing Vulnerability | December 12, 2023 |
By the Year
In 2026 there have been 0 vulnerabilities in Microsoft Power Platform. Power Platform did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 2 | 8.30 |
| 2023 | 1 | 7.40 |
It may take a day or so for new Power Platform vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Power Platform Security Vulnerabilities
Power Platform Missing Auth - Unauth Attacker Views Sensitive Data
CVE-2024-38190
8.6 - High
- October 15, 2024
Missing authorization in Power Platform allows an unauthenticated attacker to view sensitive information through a network attack vector.
AuthZ
Jun 2024: Microsoft Dataverse Remote Code Execution Vulnerability
CVE-2024-35260
8 - High
- June 27, 2024
An authenticated attacker can exploit an untrusted search path vulnerability in Microsoft Dataverse to execute code over a network.
Untrusted Path
Power Platform Connector Spoofing Vulnerability CVE-2023-36019
CVE-2023-36019
7.4 - High
- December 12, 2023
Microsoft Power Platform Connector Spoofing Vulnerability
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Power Platform or by Microsoft? Click the Watch button to subscribe.
