6 matches found
Security Updates for Microsoft Dynamics 365 (on-premises) (February 2023)
The Microsoft Dynamics 365 on-premises is missing security updates. It is, therefore, affected by multiple session spoofing vulnerabilities. An attacker can exploit these to perform actions with the privileges of another user Note that Nessus has not tested for these issues but has instead relied...
CVE-2023-21807
creationtimestamp| type| source ---|---|--- 2023-02-14 22:41:49+00:00| seen| https://t.me/cibsecurity/58162...
CVE-2023-21807 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
...
CVE-2023-21807 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
...
CVE-2023-21807
CVE-2023-21807 relates to a cross-site scripting vulnerability in Microsoft Dynamics 365 (on-premises). Public documentation confirms affected products as Microsoft Dynamics 365 (on-premises) versions around 9.0/9.1 with a CVSS v3.1 base score of 6.5 (Network, High attack complexity, User interac...
KLA20227 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 on-premises can be exploite...