6 matches found
CVE-2023-24879
Microsoft Dynamics 365 on-premises Cross-site Scripting Vulnerability...
CVE-2023-24879 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
...
CVE-2023-24879 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
...
CVE-2023-24879
CVE-2023-24879 affects Microsoft Dynamics 365 (on-premises) (versions 9.0 and 9.1). The connected sources describe a Cross-site Scripting vulnerability in Dynamics 365 on-premises, enabling an attacker to impersonate a user and access data (per NCSC’s vulnerability breakdown). The root cause is n...
KLA48561 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics 365. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in Microsoft Dynamics 365 on-premises can be exploited...
Security Updates for Microsoft Dynamics 365 (on-premises) (February 2023)
The Microsoft Dynamics 365 on-premises is missing security updates. It is, therefore, affected by multiple session spoofing vulnerabilities. An attacker can exploit these to perform actions with the privileges of another user Note that Nessus has not tested for these issues but has instead relied...