Popis
Multiple vulnerabilities were found in Microsoft Dynamics 365. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code.
Below is a complete list of vulnerabilities:
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 (On-Premise) can be exploited remotely via specially crafted web to spoof user interface.
- A remote code execution vulnerability in Microsoft Dynamics 365 (on-premises) can be exploited remotely via specially crafted request to execute arbitrary code.
- A remote code execution vulnerability in Microsoft Dynamics 365 for Finance and Operations (on-premises) can be exploited remotely via specially crafted file to execute arbitrary code.
Oficiální doporučení
- CVE-2020-16860
- CVE-2020-16862
- CVE-2020-16864
- CVE-2020-16878
- CVE-2020-16861
- CVE-2020-16871
- CVE-2020-16858
- CVE-2020-16859
- CVE-2020-16857
Související produkty
seznam CVE
- CVE-2020-16872 critical
- CVE-2020-16860 critical
- CVE-2020-16862 critical
- CVE-2020-16864 high
- CVE-2020-16878 high
- CVE-2020-16861 high
- CVE-2020-16871 high
- CVE-2020-16858 high
- CVE-2020-16859 high
- CVE-2020-16857 critical
seznam KB
Zobrazit více
Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com
Našli jste v popisu této chyby zabezpečení nepřesnost? Dej nám vědět!