CVE-2025-24989CISA KEV: Actively Exploited

Microsoft Power Pages Improper Access Control Vulnerability

Published Feb 21, 2025·Updated Feb 21, 2025

Description

Microsoft Power Pages contains an improper access control vulnerability that allows an unauthorized attacker to elevate privileges over a network potentially bypassing the user registration control.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free