19 matches found
Microsoft Power Automate for Desktop < 2.68.237.26118 Information Disclosure (May 2026)
The version of Microsoft Power Automate for desktop installed on the remote Windows host is prior to 2.68.237.26118. It is, therefore, affected by an information disclosure vulnerability: - Exposure of sensitive information to an unauthorized actor in Power Automate allows an authorized attacker ...
EUVD-2025-2266
Malicious code in bioql PyPI...
EUVD-2024-40745
Malicious code in bioql PyPI...
CVE-2025-29817 Microsoft Power Automate Desktop Information Disclosure Vulnerability
...
CVE-2025-29817
CVE-2025-29817 affects Microsoft Power Automate Desktop. The issue is an uncontrolled search path element in Power Automate that an authorized attacker can exploit to disclose information over a network, with Confidentiality impact HIGH per CVSS. The Connected sources (Microsoft MSRC entry and co...
CVE-2025-29817 Microsoft Power Automate Desktop Information Disclosure Vulnerability
...
Microsoft Power Automate Desktop Information Disclosure Vulnerability
Uncontrolled search path element in Power Automate allows an authorized attacker to disclose information over a network...
CVE-2025-21187
Microsoft Power Automate Remote Code Execution Vulnerability...
CVE-2025-21187 Microsoft Power Automate Remote Code Execution Vulnerability
...
CVE-2025-21187 Microsoft Power Automate Remote Code Execution Vulnerability
...
CVE-2025-21187
CVE-2025-21187 corresponds to a Microsoft Power Automate Remote Code Execution vulnerability. Connected sources indicate exploitation requires a user to open a rogue file, enabling code execution in the caller’s context. A fix has been released and Microsoft states the vulnerability was addressed...
Microsoft Power Automate Remote Code Execution Vulnerability
...
Microsoft Power Automate 代码注入漏洞
Microsoft Power Automate is a low-code automation platform from Microsoft USA that allows users to create automated workflows that connect and integrate various applications and services. A code injection vulnerability exists in Microsoft Power Automate. An attacker exploiting this vulnerability...
Microsoft Power Automate For Desktop Remote Code Execution (CVE-2024-43479)
The version of Microsoft Power Automate for desktop installed on the remote Windows host is If your current version is 2.46.x 2.46.184.25013, 2.47.x 2.47.126.25010, 2.48.x 2.48.164.25010, 2.49.x 2.49.182.25010, 2.50.x 2.50.139.25010, 2.51.x 2.51.349.24355, or 2.52.x 2.52.62.25009. It is, therefor...
Microsoft Power Automate For Desktop Installed (Windows)
Binary data microsoftpowerautomatefordesktopinstalled.nbin...
Microsoft Power Automate For Desktop Remote Code Execution (CVE-2024-43479)
The version of Microsoft Power Automate for desktop installed on the remote Windows host is 2.41.x 2.41.178.24249, 2.42.x 2.42.331.24249, 2.43.x 2.43.249.24249, 2.44.x 2.44.55.24249, 2.45.x 2.45.404.24249, 2.46.x 2.46.181.24249, or 2.47.x 2.47.119.24249. It is, therefore, affected by a remote cod...
CVE-2024-43479 Microsoft Power Automate Desktop Remote Code Execution Vulnerability
...
CVE-2024-43479 Microsoft Power Automate Desktop Remote Code Execution Vulnerability
...
A Windows 11 Automation Tool Can Easily Be Hijacked
Hackers can use Microsoft’s Power Automate to push out ransomware and key loggers—if they get machine access first...