Kaspersky Threats

Описание

Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, obtain sensitive information.

Below is a complete list of vulnerabilities:

A denial of service vulnerability in Microsoft Common Data Model SDK can be exploited remotely to cause denial of service.
A cross-site-scripting (XSS) vulnerability Microsoft Dynamics 365 (on-premises) can be exploited remotely to spoof user interface.
An information disclosure vulnerability in Microsoft Dynamics 365 (On-Premises) can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

CVE-2023-36566
CVE-2023-36416
CVE-2023-36433
CVE-2023-36429

Связанные продукты

Microsoft-Dynamics-365

Список CVE

CVE-2023-36566
unknown
CVE-2023-36416
unknown
CVE-2023-36433
unknown
CVE-2023-36429
unknown

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!