Power Bi Report Server Security Vulnerabilities and Issues — Power Bi Report Server CVE List

Lucene search

MicrosoftPower Bi Report Server

8 matches found

CVE•added 2021/07/14 6:15 p.m.•166 views

CVE-2021-31984

Power BI Remote Code Execution Vulnerability

8.8CVSS7.9AI score0.02327EPSS

CVE•added 2024/10/08 6:15 p.m.•117 views

CVE-2024-43612

Power BI Report Server Spoofing Vulnerability

6.9CVSS5.7AI score0.00401EPSS

CVE•added 2021/11/10 1:19 a.m.•114 views

CVE-2021-41372

A Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) vulnerability exists when Power BI Report Server Template file (pbix) containing HTML files is uploaded to the server and HTML files are accessed directly by the victim.Combining these 2 vulnerabilities together, an attacker is able...

9.6CVSS7.8AI score0.00366EPSS

CVE•added 2019/12/10 10:15 p.m.•112 views

CVE-2019-1332

A cross-site scripting (XSS) vulnerability exists when Microsoft SQL Server Reporting Services (SSRS) does not properly sanitize a specially-crafted web request to an affected SSRS server, aka 'Microsoft SQL Server Reporting Services XSS Vulnerability'.

6.1CVSS5.9AI score0.02052EPSS

CVE•added 2021/03/11 4:15 p.m.•111 views

CVE-2021-26859

Microsoft Power BI Information Disclosure Vulnerability

7.7CVSS7.2AI score0.06639EPSS

CVE•added 2023/02/14 8:15 p.m.•97 views

CVE-2023-21806

Power BI Report Server Spoofing Vulnerability

8.2CVSS8.1AI score0.00225EPSS

CVE•added 2024/10/08 6:15 p.m.•97 views

CVE-2024-43481

Power BI Report Server Spoofing Vulnerability

8.8CVSS7.4AI score0.03963EPSS

CVE•added 2020/05/21 11:15 p.m.•73 views

CVE-2020-1173

A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft Power BI Report Server Spoofing Vulnerability'.

6.8CVSS6.5AI score0.01184EPSS