Lucene search
MicrosoftMS:CVE-2024-43479HistorySep 10, 2024 - 7:00 a.m.
Microsoft Power Automate Desktop Remote Code Execution Vulnerability
2024-09-1007:00:00
Microsoft
msrc.microsoft.com
2
power automate
desktop
remote code execution
vulnerability
CVSS3
8.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
7.1
Confidence
Low
EPSS
0.001
Percentile
16.8%
Affected configurations
Node
microsoftpower_automateRange<2.47.119.24249windows
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | power_automate | * | cpe:2.3:a:microsoft:power_automate:*:*:*:*:*:windows:*:* |
Related
cve
cve
CVE-2024-43479
2024-09-10 17:15:35
cvelist
cvelist
nvd
nvd
CVE-2024-43479
2024-09-10 17:15:35
nessus
nessus
Microsoft Power Automate For Desktop Remote Code Execution (CVE-2024-43479)
2024-09-11 00:00:00
vulnrichment
vulnrichment
kaspersky
kaspersky
KLA73226 Multiple vulnerabilities in Microsoft Dynamics
2024-09-10 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2024
2024-09-10 20:49:21
CVSS3
8.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
7.1
Confidence
Low
EPSS
0.001
Percentile
16.8%
Related for MS:CVE-2024-43479