Descripción
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, spoof user interface, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 (on-premises) can be exploited remotely to spoof user interface.
- A spoofing vulnerability in Dynamics 365 Sales can be exploited remotely to spoof user interface.
- A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 Customer Engagement can be exploited remotely to spoof user interface.
- An information disclosure vulnerability in Microsoft Dynamics Business Central/NAV can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in Dynamics 365 Field Service can be exploited remotely to spoof user interface.
Notas informativas originales
- CVE-2024-21328
- CVE-2024-21327
- CVE-2024-21389
- CVE-2024-21396
- CVE-2024-21380
- CVE-2024-21394
- CVE-2024-21395
Productos relacionados
Lista CVE
- CVE-2024-21393 critical
- CVE-2024-21328 critical
- CVE-2024-21327 critical
- CVE-2024-21389 critical
- CVE-2024-21396 critical
- CVE-2024-21380 critical
- CVE-2024-21394 critical
- CVE-2024-21395 critical
Lista KB
Leer más
Conozca las estadísticas de las vulnerabilidades que se propagan en su región statistics.securelist.com
¿Has encontrado algún error en la descripción de esta vulnerabilidad? ¡Háznoslo saber!