3 matches found
CVE-2020-16978
Microsoft Dynamics 365 (on‑premises) is affected by CVE-2020-16978, a cross‑site scripting (XSS) vulnerability. The issue arises when Dynamics Server does not properly sanitize specially crafted web requests, allowing an authenticated attacker to execute scripts in the context of the current user...
Vulnerabilities fixed in Microsoft Dynamics
Microsoft fixes multiple vulnerabilities in Microsoft Dynamics products. The vulnerability in Microsoft Dynamics with the attribute CVE-2020-16943 allows a malicious person to access sensitive data. The vulnerabilities with the attributes CVE-2020-16956 and CVE-2020-16978 enable a remote maliciou...
KLA11972 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Dynamics 365 Commerce can be exploited remotely via...