KLA11999
Multiple vulnerabilities in Microsoft Dynamics

Обновлено: 16/11/2020
Дата обнаружения
10/11/2020
Уровень угрозы
High
Описание

Multiple vulnerabilities was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to perform cross-site scripting attack.

Пораженные продукты

Microsoft Dynamics 365 (on-premises) version 9.0
Microsoft Dynamics CRM 2015 (on-premises) version 7.0
Microsoft Dynamics 365 (on-premises) version 8.2

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
CVE-2020-17018
CVE-2020-17005
CVE-2020-17006
CVE-2020-17021
Оказываемое влияние
?
XSS/CSS 
[?]
Связанные продукты
Microsoft Dynamics 365
CVE-IDS
CVE-2020-170183.5Warning
CVE-2020-170053.5Warning
CVE-2020-170063.5Warning
CVE-2020-170213.5Warning
KB list

4584612
4577009
4584611

Microsoft official advisories
Microsoft Security Update Guide
Узнай статистику распространения уязвимостей в твоем регионе