KLA11637
XSS vulnerability in Microsoft Dynamics
Updated: 05/22/2020
Detect date
?
01/14/2020
Severity
?
High
Description

A cross-site-scripting (XSS) vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to spoof user interface.

Affected products

Dynamics 365 Field Service (on-premises) v7 series

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2020-0656

Impacts
?
SUI 
[?]
Related products
Microsoft Dynamics 365
CVE-IDS
?
CVE-2020-06560.0Unknown
Microsoft official advisories
Microsoft Security Update Guide