Multiple vulnerabilities in Microsoft Dynamics

Description

Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, spoof user interface.

Below is a complete list of vulnerabilities:

1. A cross-site-scripting (XSS) vulnerability in Microsoft Dynamics 365 can be exploited remotely to spoof user interface.
2. A spoofing vulnerability in Microsoft Dynamics 365 can be exploited remotely to spoof user interface.

Original advisories

• CVE-2021-40457

• CVE-2021-41353
• CVE-2021-41354

Related products

• Microsoft-Dynamics-365

CVE list

• CVE-2021-40457
  unknown
• CVE-2021-41353
  unknown
• CVE-2021-41354
  unknown

KB list

• 4618795
• 4618810

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com