Multiple vulnerabilities in Microsoft Dynamics

Description

Multiple vulnerabilities were found in Microsoft Dynamics 365. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. Security UI vulnerability in Microsoft Dynamics 365 (on-premises) can be exploited remotely to spoof user interface.
2. An information disclosure vulnerability in Microsoft Dynamics 365 can be exploited remotely to obtain sensitive information.

Original advisories

• CVE-2023-24920

• CVE-2023-24891
• CVE-2023-24922
• CVE-2023-24919
• CVE-2023-24921
• CVE-2023-24879

Related products

• Microsoft-Dynamics-365

CVE list

• CVE-2023-24920
  high
• CVE-2023-24891
  high
• CVE-2023-24922
  high
• CVE-2023-24919
  high
• CVE-2023-24921
  high
• CVE-2023-24879
  high

KB list

• 5023506
• 5023505

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com