ACE vulnerability in Microsoft Dynamics

Описание

Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Microsoft Dataverse can be exploited remotely to execute arbitrary code.
2. An information disclosure vulnerability in Microsoft Power Apps can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

• CVE-2025-47732
  CVE-2025-47733
  

Эксплуатация

Связанные продукты

• Dynamics-CRM-Service

Список CVE

• CVE-2025-47732
  critical
• CVE-2025-47733
  critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com