KLA11683
ACE vulnerability in Microsoft Dynamics
Обновлено: 22/05/2020
Дата обнаружения
10/03/2020
Уровень угрозы
Critical
Описание

ACE vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to execute arbitrary code.

Пораженные продукты

Microsoft Dynamics NAV 2015
Microsoft Dynamics NAV 2017
Microsoft Dynamics NAV 2016
Microsoft Dynamics 365 BC On Premise
Dynamics 365 Business Central 2019 Spring Update
Microsoft Dynamics NAV 2013
Dynamics 365 Business Central 2019 Release Wave 2 (On-Premise)
Microsoft Dynamics NAV 2018

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
CVE-2020-0905
Оказываемое влияние
?
ACE 
[?]
Связанные продукты
Microsoft Dynamics 365
CVE-IDS
CVE-2020-09050.0Unknown
KB list

4538885
4538886
4538884
4538888
4551259
4538708
4551258
4538887

Microsoft official advisories
Microsoft Security Update Guide