CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2026/05/13 8:22 p.m.•4 views

CVE-2026-41094

Improper control of generation of code 'code injection' in Microsoft Data Formulator allows an unauthorized attacker to execute code over a network...

8.8CVSS6AI score0.00067EPSS

Exploits0References1

EUVD•added 2026/05/12 6:30 p.m.•9 views

EUVD-2026-29682

Improper control of generation of code 'code injection' in Microsoft Data Formulator allows an unauthorized attacker to execute code over a network...

8.8CVSS6AI score0.00067EPSS

Exploits0References2

NCSC•added 2026/05/12 5:53 p.m.•5 views

vulnerabilities handled in Microsoft Developer Tools

Microsoft has addressed vulnerabilities in various Developer Tools. A malicious individual could exploit these vulnerabilities to carry out attacks that can cause the following types of damage: - Denial-of-Service DoS attacks - Bypass of security measures - Execution of arbitrary code user rights...

10CVSS6.2AI score0.00096EPSS

Exploits0

ATTACKERKB•added 2026/05/12 4:58 p.m.•3 views

CVE-2026-41094

Improper control of generation of code 'code injection' in Microsoft Data Formulator allows an unauthorized attacker to execute code over a network...

8.8CVSS6AI score0.00067EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/05/12 4:58 p.m.•3 views

CVE-2026-41094 Microsoft Data Formulator Remote Code Execution Vulnerability

...

8.8CVSS5.8AI score0.00067EPSS

Exploits0References1

CVE•added 2026/05/12 4:58 p.m.•13 views

CVE-2026-41094

CVE-2026-41094: Improper control of generation of code ('code injection') in Microsoft Data Formulator enables an unauthenticated attacker to execute code over a network. Base CVSS v3.1 score 8.8 (High) with network access, no privileges, user interaction required. Exploitation status is not deta...

8.8CVSS6AI score0.00067EPSS

Exploits0References1Affected Software1

Microsoft CVE•added 2026/05/12 2:0 p.m.•7 views

Microsoft Data Formulator Remote Code Execution Vulnerability

Improper control of generation of code 'code injection' in Microsoft Data Formulator allows an unauthorized attacker to execute code over a network...

8.8CVSS6AI score0.00067EPSS

Exploits0

CNNVD•added 2026/05/12 12:0 a.m.•5 views

Microsoft Data Formulator 代码注入漏洞

Microsoft Data Formulator is an AI data visualization and analysis tool developed by Microsoft Corporation in the United States, powered by large language models. Microsoft Data Formulator has a code injection vulnerability. Attackers can exploit this vulnerability to execute code remotely...

8.8CVSS6AI score0.00067EPSS

Exploits0References2

Positive Technologies•added 2026/05/12 12:0 a.m.•5 views

PT-2026-40235

Improper control of generation of code 'code injection' in Microsoft Data Formulator allows an unauthorized attacker to execute code over a network...

8.8CVSS6AI score0.00067EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by