Microsoft Common Data Model SDK Denial of Service Vulnerability · CVE-2023-36566 · GitHub Advisory Database · GitHub

Microsoft Common Data Model SDK Denial of Service Vulnerability

Moderate severity GitHub Reviewed Published Oct 10, 2023 to the GitHub Advisory Database • Updated Jun 3, 2024

Package

Microsoft.CommonDataModel.ObjectModel (NuGet)

Affected versions

< 1.7.4

Patched versions

1.7.4

com.microsoft.commondatamodel:objectmodel (Maven)

< 1.7.4

1.7.4

commondatamodel-objectmodel (pip)

< 1.7.4

1.7.4

Description

Microsoft Common Data Model SDK Denial of Service Vulnerability

References

Published by the National Vulnerability Database

Oct 10, 2023

Published to the GitHub Advisory Database Oct 10, 2023

Reviewed Nov 21, 2023

Last updated Jun 3, 2024

Severity

Moderate

6.5

/ 10

CVSS base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

Low

User interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H