5 matches found
Vulnerabilities fixed in Microsoft Dynamics
Microsoft has fixed vulnerabilities in Dynamics. A malicious party could exploit the vulnerabilities to cause a Denial-of-Service, or to impersonate another user through a Cross-Site-Scripting attack. Such an attack can lead to execution of arbitrary code in the browser of the victim, or access...
CVE-2023-36020
Microsoft Dynamics 365 on-premises Cross-site Scripting Vulnerability...
CVE-2023-36020 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
...
CVE-2023-36020
CVE-2023-36020 is a cross-site scripting vulnerability in Microsoft Dynamics 365 (on-premises). Connected sources confirm an XSS flaw that can be exploited remotely to spoof the user interface, affecting Microsoft Dynamics 365 (on-premises) versions 9.0 and 9.1 (and related Platform/Finance & Ope...
Security Updates for Microsoft Dynamics 365 (on-premises) (December 2023)
The Microsoft Dynamics 365 on-premises is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A denial of service DoS vulnerability. An attacker can exploit this issue to cause the affected component to deny system or application services. CVE-2023-35621 - A sessio...