Kaspersky Threats

Описание

Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information.

Below is a complete list of vulnerabilities:

A remote code execution vulnerability in Dynamics Business Central can be exploited remotely to execute arbitrary code.
A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 (On-Premise) can be exploited remotely via specially crafted web to spoof user interface.
Unspecified Microsoft Dynamics Business can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

CVE-2020-1022
CVE-2020-1050
CVE-2020-1049
CVE-2020-1018

Связанные продукты

Microsoft-Dynamics-365

Список CVE

CVE-2020-1022
high
CVE-2020-1050
warning
CVE-2020-1049
warning
CVE-2020-1018
warning

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!