CVE-2021-41354

🗓️ 13 Oct 2021 00:28:18Reported by microsoftType

Microsoft Dynamics 365 (on-premises) XSS Vulnerabilit

Reporter	Title	Published	Views	Family All 14
CNNVD	Microsoft Dynamics 365 跨站脚本漏洞	12 Oct 202100:00	–	cnnvd
Cvelist	CVE-2021-41354 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability	13 Oct 202100:28	–	cvelist
EUVD	EUVD-2021-28383	3 Oct 202520:07	–	euvd
Microsoft KB	Security update 2021-10-12	12 Oct 202107:00	–	mskb
Microsoft KB	Security update 2021-10-12	12 Oct 202107:00	–	mskb
Kaspersky	KLA12313 Multiple vulnerabilities in Microsoft Dynamics	12 Oct 202100:00	–	kaspersky
Microsoft CVE	Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability	12 Oct 202107:00	–	mscve
NCSC	Vulnerabilities fixed in Microsoft Dynamics	12 Oct 202100:00	–	ncsc
NVD	CVE-2021-41354	13 Oct 202101:15	–	nvd
OSV	CVE-2021-41354	13 Oct 202101:15	–	osv

NVD

Vulners

Node

microsoft dynamics_365Match9.0on-premises

microsoft dynamics_365Match9.1on-premises

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft Dynamics 365 (on-premises) version 9.0",
    "cpes": [
      "cpe:2.3:a:microsoft:dynamics_365:9.0:*:*:*:on-premises:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "9.0.0",
        "lessThan": "9.0.31.7",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Dynamics 365 (on-premises) version 9.1",
    "cpes": [
      "cpe:2.3:a:microsoft:dynamics_365:9.1:*:*:*:on-premises:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "9.0",
        "lessThan": "9.1.4",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41354

21 Nov 2024 06:26Current

5.5Medium risk

Vulners AI Score5.5

CVSS 23.5

CVSS 3.15.4

EPSS0.0074

CWE-79