4 matches found
CVE-2020-0905
CVE-2020-0905 is a remote code execution vulnerability in Microsoft Dynamics Business Central (and Dynamics NAV) via deserialization in the Role-Tailored Client that could allow an attacker to execute arbitrary shell commands on a vulnerable system. Multiple connected sources corroborate an RCE r...
CVE-2020-1018
CVE-2020-1018 concerns Microsoft Dynamics 365 Business Central/NAV on-premises where masked fields shown on a chart page are not properly hidden, exposing information that should be concealed. The info-disclosure vulnerability stems from the rendering of masked content in the Windows client; the ...
CVE-2020-1022
CVE-2020-1022 is a documented remote code execution vulnerability affecting Microsoft Dynamics 365 Business Central (and NAV variants). The connected Red Hat/Qualys/Nessus entries corroborate an RCE impacting Dynamics BC/NAV, with patch guidance referencing CVE-2020-1022 (e.g., Update 15.5 for BC...
CVE-2024-43460
CVE-2024-43460 affects Microsoft Dynamics 365 Business Central Online. The vulnerability arises from improper authorization, allowing an authenticated attacker to elevate privileges over the network. The issue impacts the Dynamics 365 Business Central component handling access control, enabling p...