Beschreibung
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, spoof user interface, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 (on-premises) can be exploited remotely to spoof user interface.
- A spoofing vulnerability in Dynamics 365 Sales can be exploited remotely to spoof user interface.
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 Customer Engagement can be exploited remotely to spoof user interface.
- An information disclosure vulnerability in Microsoft Dynamics Business Central/NAV can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in Dynamics 365 Field Service can be exploited remotely to spoof user interface.
Ursprüngliche Informationshinweise
- CVE-2024-21328
- CVE-2024-21327
- CVE-2024-21389
- CVE-2024-21396
- CVE-2024-21380
- CVE-2024-21394
- CVE-2024-21395
Betroffene Produkte
CVE Liste
- CVE-2024-21393 critical
- CVE-2024-21328 critical
- CVE-2024-21327 critical
- CVE-2024-21389 critical
- CVE-2024-21396 critical
- CVE-2024-21380 critical
- CVE-2024-21394 critical
- CVE-2024-21395 critical
KB Liste
Mehr erfahren
Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com
Sie haben einen Fehler in der Beschreibung der Schwachstelle gefunden? Mitteilen!