KLA11576
Spoofing vulnerability in Microsoft Dynamics
Updated: 10/11/2019
Detect date
?
10/08/2019
Severity
?
High
Description

A cross-site-scripting (XSS) vulnerability was found in Microsoft Dynamics. Malicious users can exploit remotely via specially crafted web request to spoof user interface.

Affected products

Microsoft Dynamics 365 (on-premises) version 9.0

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2019-1375

Impacts
?
SUI 
[?]
Related products
Microsoft Dynamics 365
CVE-IDS
?
CVE-2019-13750.0Unknown
Microsoft official advisories
Microsoft Security Update Guide
KB list

4515519