5 matches found
CVE-2021-36950
CVE-2021-36950 is a Microsoft Dynamics 365 (on‑premises) Cross-site Scripting Vulnerability affecting (per CNVD) Dynamics 365 on‑premises version 9.0. The available sources consistently describe it as an XSS issue enabling UI spoofing. The concrete root cause details are not provided in the docum...
CVE-2021-36950 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
...
Security Updates for Microsoft Dynamics 365 (on-premises) (August 2021)
The Microsoft Dynamics 365 on-premises installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Remote Code Execution Vulnerability CVE-2021-34524 - Cross-site Scripting Vulnerabilities CVE-2021-36946, CVE-2021-36950 Note that Nessus h...
KLA12260 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Dynamics 365 on-premises can be exploite...
Vulnerabilities fixed in Microsoft Dynamics
Microsoft has fixed three vulnerabilities in Dynamics. A malicious party can exploit the vulnerabilities to impersonate as another user or to execute arbitrary code. Below is an overview of the affected vulnerabilities: Microsoft Dynamics:...