VDB

GCVE-VVD-NCSC-2024-394

GCVE-VVD-NCSC-2024-394
Advisory PublishedCVSS 6.5/10
Vulnetix · Advisory published October 8, 2024
Microsoft heeft kwetsbaarheden verholpen in SQL Server Power BI Report Server
Download JSON Open in Console

Weaknesses (CWE)

CWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Risk Scores

CVSS 3.1
6.5/10
Medium · CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Affected Products

VendorProductVersionsPlatforms
microsoftpower_bi_report_server_-_may_2024

Aliases

CVE-2024-43481CVE-2024-43612

Transitive aliases

GHSA-p7pp-ghq2-q7ccBDU:2024-08025EUVD-2024-40361BDU:2024-08239EUVD-2024-40747VVD-CISA-2024-43481GHSA-gm85-m2qv-27w7VVD-CISA-2024-43612MSRC_CVE-2024-43612MSRC_CVE-2024-43481

References

advisory
advisory
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›