Description
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface, perform cross-site scripting attack.
Below is a complete list of vulnerabilities:
- A spoofing vulnerability in Microsoft Dynamics 365 (on-premises) can be exploited remotely to spoof user interface.
- Cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 Customer Engagement can be exploited remotely to perform cross-site scripting attack.
Original advisories
Related products
CVE list
- CVE-2022-21891 warning
- CVE-2022-21932 high
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!