VDB
CVE-2023-32024
CVE-2023-32024
PUBLISHED
Es existieren mehrere Schwachstellen in Microsoft Apps und Microsoft Dynamics 365. Die Fehler bestehen aufgrund eines Spoofing-Problems. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen und Daten zu manipulieren. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.
EPSS 0.30% · 53.6th percentile
Risk Scores
EPSS Score
0.30%
53.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Apps Power Apps | |
| Microsoft | Microsoft Dynamics 365 for Finance and Operations |
Exploit Intelligence
- https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
- .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability (circl)
- rules.yar (github-yara)
- rules.yar (github-yara)
- rules.yar (github-yara)
- rules.yar (github-yara)
- rules.yar (github-yara)
- rules.yar (github-yara)
- CVE-2023-4863.yar (github-yara)
- CVE-2023-4863.yar (github-yara)
…and 4 more exploits
Timeline
- Jun 13, 2023 CVE Published
- Jun 15, 2023 EPSS Score
- Jul 21, 2023 EPSS Score
- Aug 25, 2023 EPSS Score
- Sep 30, 2023 EPSS Score
- Oct 5, 2023 PoC Published
- Nov 4, 2023 EPSS Score
- Dec 10, 2023 EPSS Score
- Jan 14, 2024 EPSS Score
- Feb 19, 2024 EPSS Score
- Apr 30, 2024 EPSS Score
- Jun 4, 2024 EPSS Score