Multiple vulnerabilities in Microsoft Dynamics

Описание

Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. Improper neutralization of escape, meta, or control sequences in Microsoft Power Apps can be exploited remotely to bypass security restrictions.
2. An information disclosure vulnerability in Microsoft Dynamics 365 (On-Premises) can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

• CVE-2026-26149
  CVE-2026-33103
  

Эксплуатация

Связанные продукты

• Microsoft-Dynamics-365
• Microsoft-365

Список CVE

• CVE-2026-26149
  critical
• CVE-2026-33103
  high

Список KB

• 5078943

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com