Lucene search
HistorySep 10, 2024 - 5:15 p.m.
CVE-2024-43479
microsoft
power automate desktop
remote code execution
vulnerability
cve-2024-43479
CVSS3
8.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0.001
Percentile
16.8%
Microsoft Power Automate Desktop Remote Code Execution Vulnerability
Affected configurations
Node
microsoftpower_automateRange2.41–2.41.178.24249windows
ORmicrosoftpower_automateRange2.42–2.42.331.24249windows
ORmicrosoftpower_automateRange2.43–2.43.249.24249windows
ORmicrosoftpower_automateRange2.44–2.44.55.24249windows
ORmicrosoftpower_automateRange2.45–2.45.404.24249windows
ORmicrosoftpower_automateRange2.46–2.46.181.24249windows
ORmicrosoftpower_automateRange2.47–2.47.119.24249windows
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | power_automate | * | cpe:2.3:a:microsoft:power_automate:*:*:*:*:*:windows:*:* |
Related
cve
cve
CVE-2024-43479
2024-09-10 17:15:35
mscve
mscve
Microsoft Power Automate Desktop Remote Code Execution Vulnerability
2024-09-10 07:00:00
cvelist
cvelist
nessus
nessus
Microsoft Power Automate For Desktop Remote Code Execution (CVE-2024-43479)
2024-09-11 00:00:00
vulnrichment
vulnrichment
kaspersky
kaspersky
KLA73226 Multiple vulnerabilities in Microsoft Dynamics
2024-09-10 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2024
2024-09-10 20:49:21
CVSS3
8.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS
0.001
Percentile
16.8%
Related for NVD:CVE-2024-43479