Popis
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, spoof user interface, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 (on-premises) can be exploited remotely to spoof user interface.
- A spoofing vulnerability in Dynamics 365 Sales can be exploited remotely to spoof user interface.
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 Customer Engagement can be exploited remotely to spoof user interface.
- An information disclosure vulnerability in Microsoft Dynamics Business Central/NAV can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in Dynamics 365 Field Service can be exploited remotely to spoof user interface.
Oficiální doporučení
- CVE-2024-21328
- CVE-2024-21327
- CVE-2024-21389
- CVE-2024-21396
- CVE-2024-21380
- CVE-2024-21394
- CVE-2024-21395
Související produkty
seznam CVE
- CVE-2024-21393 critical
- CVE-2024-21328 critical
- CVE-2024-21327 critical
- CVE-2024-21389 critical
- CVE-2024-21396 critical
- CVE-2024-21380 critical
- CVE-2024-21394 critical
- CVE-2024-21395 critical
seznam KB
Zobrazit více
Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com
Našli jste v popisu této chyby zabezpečení nepřesnost? Dej nám vědět!