Lucene search
K

4 matches found

NCSC
NCSC
added 2023/12/13 12:0 a.m.5 views

Vulnerabilities fixed in Microsoft Dynamics

Microsoft has fixed vulnerabilities in Dynamics. A malicious party could exploit the vulnerabilities to cause a Denial-of-Service, or to impersonate another user through a Cross-Site-Scripting attack. Such an attack can lead to execution of arbitrary code in the browser of the victim, or access...

9.6CVSS6.9AI score0.16221EPSS
Exploits0
Cvelist
Cvelist
added 2023/12/12 6:10 p.m.22 views

CVE-2023-35621 Microsoft Dynamics 365 Finance and Operations Denial of Service Vulnerability

...

7.5CVSS7.9AI score0.02339EPSS
Exploits0References1
CVE
CVE
added 2023/12/12 6:10 p.m.74 views

CVE-2023-35621

CVE-2023-35621 is a Denial-of-Service vulnerability affecting Microsoft Dynamics 365 for Finance and Operations (on‑premises). The issue is exposed over the network and can be triggered remotely to impact availability; CVSS 3.1 vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (base 7.5, HIGH). Connect...

7.5CVSS7.5AI score0.02339EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/12/12 12:0 a.m.44 views

Security Updates for Microsoft Dynamics 365 (on-premises) (December 2023)

The Microsoft Dynamics 365 on-premises is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A denial of service DoS vulnerability. An attacker can exploit this issue to cause the affected component to deny system or application services. CVE-2023-35621 - A sessio...

7.6CVSS6.7AI score0.02339EPSS
Exploits0References4
Rows per page
Query Builder