Lucene search
MicrosoftVULNRICHMENT:CVE-2023-21806HistoryFeb 14, 2023 - 7:32 p.m.
CVE-2023-21806 Power BI Report Server Spoofing Vulnerability
2023-02-1419:32:40
CWE-79
microsoft
github.com
3
power bi
report server
spoofing
vulnerability
cve-2023-21806
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:L/E:U/RL:O/RC:C
AI Score
6.8
Confidence
Low
EPSS
0.001
Percentile
42.8%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Power BI Report Server - January 2023",
"cpes": [
"cpe:2.3:a:microsoft:power_bi_report_server:-:*:*:*:*:*:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "15.0.0",
"lessThan": "15.0.1111.115",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
mscve
mscve
Power BI Report Server Spoofing Vulnerability
2023-02-14 08:00:00
prion
prion
Spoofing
2023-02-14 20:15:00
cve
cve
CVE-2023-21806
2023-02-14 20:15:15
nvd
nvd
CVE-2023-21806
2023-02-14 20:15:15
nessus
nessus
Security Update for Microsoft Power BI Report Server (January 2023)
2023-02-16 00:00:00
cvelist
cvelist
CVE-2023-21806 Power BI Report Server Spoofing Vulnerability
2023-02-14 19:32:40
mskb
mskb
kaspersky
kaspersky
KLA20230 Multiple vulnerabilities in Microsoft SQL Server
2023-02-14 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - February 2023
2023-02-15 00:41:59
CVSS3
8.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:L/E:U/RL:O/RC:C
AI Score
6.8
Confidence
Low
EPSS
0.001
Percentile
42.8%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-21806