Microsoft Power Automate Privilege Escalation Vulnerability

Vulnerability

A vulnerability in Power Automate for Desktop allows unauthorized actors to access sensitive information, potentially leading to unauthorized privilege escalation over a network. This issue has been classified as critical, with high impacts on confidentiality, integrity, and availability.

Impact

Exploitation of this vulnerability could allow an unauthorized attacker to elevate privileges within Power Automate, potentially leading to unauthorized actions or access to resources.

Added: Jun 5, 2025, 9:52 PM

Updated: Jun 5, 2025, 9:52 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.1

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.1

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Power Automate Privilege Escalation Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating