54 matches found
EUVD-2018-20262
Malware in sbrugna...
EUVD-2019-9230
Malware in sbrugna...
EUVD-2022-44370
Malicious code in bioql PyPI...
CVE-2019-19616
An Insecure Direct Object Reference IDOR vulnerability in the Xtivia Web Time and Expense WebTE interface used for Microsoft Dynamics NAV before 2017 allows an attacker to download arbitrary files by specifying arbitrary values for the recId and filename parameters of the /Home/GetAttachment...
Security Updates for Microsoft Dynamics NAV (Dec 2022)
The Microsoft Dynamics NAV install is missing a security update. It is, therefore, affected by a remote code execution vulnerability. Note that Nessus has not attempted to exploit this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...
CVE-2022-41127
Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central On Premises Remote Code Execution Vulnerability...
Cumulative Update 59 for Microsoft Dynamics NAV 2018 (Build 49497)
Cumulative Update 59 for Microsoft Dynamics NAV 2018 Build 49497 Overview This cumulative update includes all hotfixes and regulatory features that have been released for Microsoft Dynamics NAV 2018, including hotfixes and regulatory features that were released in previous cumulative updates. Thi...
Cumulative Update 61 for Microsoft Dynamics NAV 2017 (Build 30699)
Cumulative Update 61 for Microsoft Dynamics NAV 2017 Build 30699 Overview This cumulative update includes all hotfixes and regulatory features that have been released for Microsoft Dynamics NAV 2017, including hotfixes and regulatory features that were released in previous cumulative updates. Thi...
PT-2022-5968 · Microsoft · Dynamics Nav +1
Name of the Vulnerable Software and Affected Versions: Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central On Premises affected versions not specified Description: The issue is related to insufficient input validation in Microsoft Dynamics 365 Business Central and Microsoft Dynamic...
CVE-2022-41127
CVE-2022-41127 affects Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central On‑Premises. Descriptions in connected docs confirm a remote code execution vulnerability and that Microsoft released updates to fix it (e.g., Update 16.19 for BC 2020 Wave 1, Update 17.17 for BC 2020 Wave 2...
Cumulative Update 58 for Microsoft Dynamics NAV 2018 (Build 49345)
Cumulative Update 58 for Microsoft Dynamics NAV 2018 Build 49345 Overview This cumulative update includes all hotfixes and regulatory features that have been released for Microsoft Dynamics NAV 2018, including hotfixes and regulatory features that were released in previous cumulative updates. Thi...
Security Updates for Microsoft Dynamics NAV (August 2021)
The Microsoft Dynamics NAV install is missing a security update. It is, therefore, affected by a Cross-site Scripting Vulnerability. Note that Nessus has not attempted to exploit this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C Tenabl...
Cumulative Update 43 for Microsoft Dynamics NAV 2018 (Build 47562)
Cumulative Update 43 for Microsoft Dynamics NAV 2018 Build 47562 Overview This cumulative update includes all hotfixes and regulatory features that have been released for Microsoft Dynamics NAV 2018, including hotfixes and regulatory features that were released in previous cumulative updates. Thi...
Cumulative Update 56 for Microsoft Dynamics NAV 2017 (Build 30601)
Cumulative Update 56 for Microsoft Dynamics NAV 2017 Build 30601 Overview This cumulative update includes all hotfixes and regulatory features that have been released for Microsoft Dynamics NAV 2017, including hotfixes and regulatory features that were released in previous cumulative updates. Thi...
Security Updates for Microsoft Dynamics NAV (Dec 2020)
The Microsoft Dynamics NAV install is missing a security update. It is, therefore, affected by an information disclosure vulnerability in the Document Service table due to the Password field not being masked. An authenticated, remote attacker can exploit this, by inspecting as a system user, to...
Security Updates for Microsoft Dynamics NAV (Feb 2021)
The Microsoft Dynamics NAV install is missing a security update. It is, therefore, affected by a cross site scripting XSS vulnerability due to improper validation of user-supplied input. An authenticated attacker can exploit this, by entering specially crafted URLs in the Links and Notes feature,...
XSS attack in Links and Notes feature in Microsoft Dynamics NAV (KB4602915)
XSS attack in Links and Notes feature in Microsoft Dynamics NAV KB4602915 Symptoms If you are authenticated, and you enter URLs by using special schemes JavaScript or data in the Links and Notes feature in Microsoft Dynamics NAV, you might make yourself vulnerable to a Cross-Site Scripting XSS...
Microsoft Dynamics Cross-Site Scripting Vulnerability
Microsoft Dynamics is a suite of ERP business solutions for multinational organizations from Microsoft USA. The product includes financial management, production management, and business intelligence management. A cross-site scripting vulnerability exists in Microsoft Dynamics. The following...
KLA12070 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Microsoft Dataverse can be exploited...
The vulnerability of the integrated enterprise management system of Microsoft Dynamics NAV, related to the lack of protection for operational data, allows a perpetrator to gain access to protected information.
The vulnerability of the integrated Microsoft Dynamics NAV enterprise management system is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor to gain access to protected information...