4.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
4.3 Medium
AI Score
Confidence
High
1.7 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
MULTIPLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:M/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
74.6%
11/08/2022
High
Information disclosure vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to obtain sensitive information.
Microsoft Dynamics 365 Business Central 2022 Release Wave 1
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
OSI
CVE-2022-410664.4Warning
5021002
5021000
5021001
5021004
5021003
support.microsoft.com/kb/5021000
support.microsoft.com/kb/5021001
support.microsoft.com/kb/5021002
support.microsoft.com/kb/5021003
support.microsoft.com/kb/5021004
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41066
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41066
portal.msrc.microsoft.com/en-us/security-guidance
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Microsoft-Dynamics-365/
4.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
4.3 Medium
AI Score
Confidence
High
1.7 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
MULTIPLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:M/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
74.6%