Microsoft Power_bi_report_server
9 CVEs affecting Microsoft Power_bi_report_server. Latest disclosed: 2026-02-10. Critical: 0, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-21806 | High | 8.2 | 2023-02-14 | Power BI Report Server Spoofing Vulnerability |
CVE-2026-21229 | High | 8.0 | 2026-02-10 | Improper input validation in Power BI allows an authorized attacker to execute code over a network. |
CVE-2021-26859 | High | 7.7 | 2021-03-11 | Microsoft Power BI Information Disclosure Vulnerability |
CVE-2021-41372 | High | 7.6 | 2021-11-10 | A Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) vulnerability exists when Power BI Report Server Template file (pbix) containing HTML files… |
CVE-2021-31984 | High | 7.6 | 2021-07-14 | Power BI Remote Code Execution Vulnerability |
CVE-2024-43612 | Medium | 6.9 | 2024-10-08 | Power BI Report Server Spoofing Vulnerability |
CVE-2020-1173 | Medium | 6.8 | 2020-05-21 | A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft Power BI R… |
CVE-2024-43481 | Medium | 6.5 | 2024-10-08 | Power BI Report Server Spoofing Vulnerability |
CVE-2019-1332 | Medium | 6.1 | 2019-12-10 | A cross-site scripting (XSS) vulnerability exists when Microsoft SQL Server Reporting Services (SSRS) does not properly sanitize a specially-crafted web reques… |