4 matches found
Security Updates for Microsoft Dynamics 365 (on-premises) (August 2024)
The Microsoft Dynamics 365 on-premises is missing security updates. It is, therefore, affected by an cross-site scripting vulnerability. An attacker can exploit this to disclose potentially sensitive information and potenital hijack a user session. Note that Nessus has not tested for these issues...
CVE-2024-38211 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
...
CVE-2024-38211
CVE-2024-38211 affects Microsoft Dynamics 365 (on‑premises) version 9.1. The connected sources describe a Cross‑Site Scripting (XSS) vulnerability that could lead to theft of cookies or session data and potential UI spoofing. Remediation is available via security updates for Dynamics 365 on‑premi...
KLA71480 SUI vulnerability in Microsoft Dynamics
A cross-site-scripting XSS vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-38211 Related products Microsoft-Dynamics-365 CVE list CVE-2024-38211 critical KB list 5041557 Solution Install necessary...