説明
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, spoof user interface, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 (on-premises) can be exploited remotely to spoof user interface.
- A spoofing vulnerability in Dynamics 365 Sales can be exploited remotely to spoof user interface.
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 Customer Engagement can be exploited remotely to spoof user interface.
- An information disclosure vulnerability in Microsoft Dynamics Business Central/NAV can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in Dynamics 365 Field Service can be exploited remotely to spoof user interface.
オリジナルアドバイザリー
- CVE-2024-21328
- CVE-2024-21327
- CVE-2024-21389
- CVE-2024-21396
- CVE-2024-21380
- CVE-2024-21394
- CVE-2024-21395
関連製品
CVEリスト
- CVE-2024-21393 critical
- CVE-2024-21328 critical
- CVE-2024-21327 critical
- CVE-2024-21389 critical
- CVE-2024-21396 critical
- CVE-2024-21380 critical
- CVE-2024-21394 critical
- CVE-2024-21395 critical
KBリスト
も参照してください
お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com
この脆弱性についての記述に不正確な点がありますか? お知らせください!