14Oca
CVE-2025-21187 | Microsoft Power Automate for Desktop code injection
A vulnerability classified as critical has been found in Microsoft Power Automate for Desktop. This affects an unknown part. The manipulation leads to code injection. This vulnerability is uniquely identified as CVE-2025-21187. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.