Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Microsoft Subscribe
Filtered by product Dynamics 365
Total 84 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-43476 1 Microsoft 1 Dynamics 365 2024-09-13 N/A 5.4 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2024-38211 1 Microsoft 1 Dynamics 365 2024-08-15 N/A 8.2 HIGH
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2024-30061 1 Microsoft 1 Dynamics 365 2024-07-17 N/A 7.3 HIGH
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
CVE-2024-35263 1 Microsoft 1 Dynamics 365 2024-06-20 N/A 5.7 MEDIUM
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
CVE-2019-1229 1 Microsoft 1 Dynamics 365 2024-05-29 6.5 MEDIUM 8.8 HIGH
An elevation of privilege vulnerability exists in Dynamics On-Premise v9. An attacker who successfully exploited the vulnerability could leverage a customizer privilege within Dynamics to gain control of the Web Role hosting the Dynamics installation. To exploit this vulnerability, an attacker needs to have credentials for a user that has permission to author customized business rules in Dynamics, and persist XAML script in a way that causes it to be interpreted as code. The update addresses the vulnerability by restricting XAML activities to a whitelisted set.
CVE-2023-24922 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 6.5 MEDIUM
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
CVE-2023-24921 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 5.4 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-24920 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 5.4 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-24919 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 5.4 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-24891 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 5.4 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-38164 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 5.4 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-36886 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 5.4 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-36800 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 5.4 MEDIUM
Dynamics Finance and Operations Cross-site Scripting Vulnerability
CVE-2023-35335 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 8.2 HIGH
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-33171 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 6.1 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-21807 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 6.5 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-21571 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 5.4 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-21570 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 5.4 MEDIUM
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVE-2023-36433 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 6.5 MEDIUM
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
CVE-2023-36429 1 Microsoft 1 Dynamics 365 2024-05-29 N/A 6.5 MEDIUM
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability