Descrição
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, spoof user interface, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 (on-premises) can be exploited remotely to spoof user interface.
- A spoofing vulnerability in Dynamics 365 Sales can be exploited remotely to spoof user interface.
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 Customer Engagement can be exploited remotely to spoof user interface.
- An information disclosure vulnerability in Microsoft Dynamics Business Central/NAV can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in Dynamics 365 Field Service can be exploited remotely to spoof user interface.
Comunicados originais
- CVE-2024-21328
- CVE-2024-21327
- CVE-2024-21389
- CVE-2024-21396
- CVE-2024-21380
- CVE-2024-21394
- CVE-2024-21395
Produtos relacionados
Lista de CVE
- CVE-2024-21393 critical
- CVE-2024-21328 critical
- CVE-2024-21327 critical
- CVE-2024-21389 critical
- CVE-2024-21396 critical
- CVE-2024-21380 critical
- CVE-2024-21394 critical
- CVE-2024-21395 critical
Lista de KB
Saiba mais
Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com
Encontrou uma imprecisão na descrição desta vulnerabilidade? Avise-nos!