Lucene search
MicrosoftVULNRICHMENT:CVE-2024-21394HistoryFeb 13, 2024 - 6:02 p.m.
CVE-2024-21394 Dynamics 365 Field Service Spoofing Vulnerability
2024-02-1318:02:21
CWE-79
microsoft
github.com
5
spoofing
dynamics 365
field service
vulnerability
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N/E:U/RL:O/RC:C
AI Score
7.2
Confidence
Low
EPSS
0
Percentile
5.1%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
CNA Affected
[
{
"cpes": [
"cpe:2.3:a:microsoft:dynamics_365:9.1:*:*:*:on-premises:*:*:*"
],
"vendor": "Microsoft",
"product": "Microsoft Dynamics 365 (on-premises) version 9.1",
"versions": [
{
"status": "affected",
"version": "9.0",
"lessThan": "9.1.25.17",
"versionType": "custom"
}
],
"platforms": [
"Unknown"
]
}
]Related
cvelist
cvelist
CVE-2024-21394 Dynamics 365 Field Service Spoofing Vulnerability
2024-02-13 18:02:21
prion
prion
Spoofing
2024-02-13 18:15:00
nvd
nvd
CVE-2024-21394
2024-02-13 18:15:57
cve
cve
CVE-2024-21394
2024-02-13 18:15:57
mscve
mscve
Dynamics 365 Field Service Spoofing Vulnerability
2024-02-13 08:00:00
mskb
mskb
Service Update 1.25 for Microsoft Dynamics CRM (on-premises) 9.1
2024-02-13 08:00:00
nessus
nessus
Security Updates for Microsoft Dynamics 365 (on-premises) (February 2024)
2024-02-14 00:00:00
kaspersky
kaspersky
KLA63963 Multiple vulnerabilities in Microsoft Dynamics
2024-02-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - February 2024
2024-02-13 21:26:21
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N/E:U/RL:O/RC:C
AI Score
7.2
Confidence
Low
EPSS
0
Percentile
5.1%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-21394