Lucene search
MicrosoftMS:CVE-2024-30054HistoryMay 14, 2024 - 7:00 a.m.
Microsoft Power BI Client JavaScript SDK Information Disclosure Vulnerability
2024-05-1407:00:00
Microsoft
msrc.microsoft.com
24
microsoft power bi client
javascript sdk
information disclosure
vulnerability
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
37.9%
Affected configurations
Node
microsoftpowerbi-client_js_sdkRange<2.23.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | powerbi-client_js_sdk | * | cpe:2.3:a:microsoft:powerbi-client_js_sdk:*:*:*:*:*:*:*:* |
Related
github
github
nvd
nvd
CVE-2024-30054
2024-05-14 17:17:22
veracode
veracode
Information Disclosure
2024-05-17 06:36:02
vulnrichment
vulnrichment
cve
cve
CVE-2024-30054
2024-05-14 17:17:22
cvelist
cvelist
osv
osv
nessus
nessus
NuGet Package 'Microsoft.PowerBI.JavaScript' < 2.23.1 Information Disclosure
2024-05-15 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - May 2024
2024-05-14 20:25:36
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
37.9%
Related for MS:CVE-2024-30054