KLA11933
XSS vulnerability in Microsoft Dynamics
Updated: 08/18/2020
Detect date
?
08/11/2020
Severity
?
High
Description

A cross-site-scripting vulnerability was found in Microsoft Dynamics.Malicious users can exploit this vulnerability to spoof user interface.

Affected products

Microsoft Dynamics 365 (on-premises) version 9.0

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2020-1591

Impacts
?
XSS/CSS 
[?]

SUI 
[?]
Related products
Microsoft Dynamics 365
CVE-IDS
?
CVE-2020-15910.0Unknown
KB list

4541722