Power Automate Elevation of Privilege Vulnerability

June 5, 2025 invoker category_news

Security Update News

Update Information

Title Power Automate Elevation of Privilege Vulnerability
Update ID MS:CVE-2025-47966
Type mscve
Published 2025-06-05T07:00:00
Last Updated 2025-06-05T07:00:00

Security Impact

CVSS Score 9.8
Severity CRITICAL
Attack Vector NETWORK

Affected CVEs

  • CVE-2025-47966

Update Details

Exposure of sensitive information to an unauthorized actor in Power Automate allows an unauthorized attacker to elevate privileges over a network.

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.