Lucene search

Power Bi Report Server Security Vulnerabilities

cve

CVE-2023-21806

Power BI Report Server Spoofing...

8.2CVSS

8.6AI Score

0.001EPSS

2023-02-14 08:15 PM

cve

CVE-2021-41372

A Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) vulnerability exists when Power BI Report Server Template file (pbix) containing HTML files is uploaded to the server and HTML files are accessed directly by the victim. Combining these 2 vulnerabilities together, an attacker is...

7.6CVSS

7.6AI Score

0.001EPSS

2021-11-10 01:19 AM

cve

CVE-2021-31984

Power BI Remote Code Execution...

7.6CVSS

7.8AI Score

0.012EPSS

2021-07-14 06:15 PM

cve

CVE-2021-26859

Microsoft Power BI Information Disclosure...

7.7CVSS

7.1AI Score

0.006EPSS

2021-03-11 04:15 PM

cve

CVE-2020-1173

A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft Power BI Report Server Spoofing...

6.8CVSS

6.5AI Score

0.001EPSS

2020-05-21 11:15 PM

cve

CVE-2019-1332

A cross-site scripting (XSS) vulnerability exists when Microsoft SQL Server Reporting Services (SSRS) does not properly sanitize a specially-crafted web request to an affected SSRS server, aka 'Microsoft SQL Server Reporting Services XSS...

6.1CVSS

5.9AI Score

0.002EPSS

2019-12-10 10:15 PM