Microsoft Dynamics On-Premise is vulnerable to Security Feature Bypass. An attacker could gain elevated privileges by capturing and editing the POST request to include a special character in the extension which may leads to modification of information.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft.xrm.client.2015 | le | 7.0.1 | |
microsoft.xrm.portal.2015 | le | 7.0.1 | |
microsoft.xrm.client.2015 | le | 7.0.1 | |
microsoft.xrm.portal.2015 | le | 7.0.1 |