Lucene search
China National Vulnerability DatabaseCNVD-2023-85890HistoryOct 13, 2023 - 12:00 a.m.
Microsoft Dynamics 365 (on-premises) Cross-Site Scripting Vulnerability
2023-10-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
microsoft
dynamics 365
on-premises
cross-site scripting
vulnerability
erp
business solutions
multinational organizations
financial management
production management
business intelligence
authentication credentials
attacker
Microsoft Dynamics 365 is a suite of ERP business solutions for multinational organizations from Microsoft (USA). The product includes financial management, production management and business intelligence management. Microsoft Dynamics 365 (on-premises) cross-site scripting vulnerability can be exploited by an attacker to steal a victim’s cookie-based authentication credentials.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft dynamics 365 (on-premises) | eq | 9.0 | |
| microsoft dynamics 365 (on-premises) | eq | 9.1 |
Related
cve
cve
CVE-2023-36416
2023-10-10 18:15:12
cvelist
cvelist
prion
prion
Cross site scripting
2023-10-10 18:15:00
mscve
mscve
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
2023-10-10 07:00:00
nvd
nvd
CVE-2023-36416
2023-10-10 18:15:12
mskb
mskb
Service Update 1.18 for Microsoft Dynamics CRM (on-premises) 9.1
2023-10-10 07:00:00
Service Update 0.47 for Microsoft Dynamics 365 9.0
2023-10-10 07:00:00
nessus
nessus
Security Updates for Microsoft Dynamics 365 (on-premises) (July 2023)
2023-07-12 00:00:00
kaspersky
kaspersky
KLA61356 Multiple vulnerabilities in Microsoft Dynamics
2023-10-10 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - October 2023
2023-10-10 20:34:57