CVEDB API

Improper input validation in Power BI allows an authorized attacker to execute code over a network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.7%

CVSS Severity

CVSS v3 Score 8.0

References

Products affected by CVE-2026-21229

Microsoft » Power Bi Report Server » Version: N/A

cpe:2.3:a:microsoft:power_bi_report_server:-
Microsoft » Power Bi Report Server » Version: 15.0.1103.234

cpe:2.3:a:microsoft:power_bi_report_server:15.0.1103.234
Microsoft » Power Bi Report Server » Version: 15.0.1104.300

cpe:2.3:a:microsoft:power_bi_report_server:15.0.1104.300
Microsoft » Power Bi Report Server » Version: 15.0.1107.165

cpe:2.3:a:microsoft:power_bi_report_server:15.0.1107.165
Microsoft » Power Bi Report Server » Version: 15.0.1111.115

cpe:2.3:a:microsoft:power_bi_report_server:15.0.1111.115