📦 Dynamics 365

This vulnerability in Microsoft Dynamics 365 allows unauthenticated attackers to bypass authentication mechanisms and gain elevated privileges over the network. Organizations using affected versions o...

This cross-site scripting (XSS) vulnerability in Dynamics 365 Field Service allows authenticated attackers to inject malicious scripts into web pages. When exploited, it enables spoofing attacks where...

This cross-site scripting (XSS) vulnerability in Dynamics 365 Field Service allows authenticated attackers to inject malicious scripts into web pages. When exploited, it enables spoofing attacks where...

This vulnerability in Dynamics 365 FastTrack Implementation Assets allows unauthorized access to sensitive information. It affects organizations using Microsoft Dynamics 365 with FastTrack implementat...

This vulnerability in Dynamics 365 FastTrack Implementation Assets allows unauthorized attackers to access private personal information over the network. It affects organizations using Microsoft Dynam...

This vulnerability allows attackers to inject malicious scripts into Microsoft Dynamics 365 (on-premises) web pages, which are then executed in victims' browsers when they view those pages. It affects...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 on-premises deployments that allows attackers to inject malicious scripts into web pages viewed by other users. When exploi...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 on-premises that allows attackers to inject malicious scripts into web pages viewed by other users. Attackers could steal s...

This vulnerability allows attackers to inject malicious scripts into Microsoft Dynamics 365 (on-premises) web pages, which are then executed in victims' browsers when they view those pages. It affects...

This vulnerability allows attackers to inject malicious scripts into Microsoft Dynamics 365 (on-premises) web pages, which are then executed in victims' browsers when they view those pages. It affects...

CVE-2024-21328 is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 Sales that allows attackers to inject malicious scripts into web pages viewed by other users. This affects organi...

This vulnerability in Microsoft Dynamics 365 Finance and Operations allows attackers to cause a denial of service (DoS) condition by sending specially crafted requests to the application. Organization...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 on-premises that allows attackers to inject malicious scripts into web pages viewed by other users. It affects organization...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 on-premises that allows attackers to inject malicious scripts into web pages viewed by other users. Attackers could steal s...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 Finance and Operations that allows attackers to inject malicious scripts into web pages viewed by other users. When exploit...

This vulnerability allows attackers to inject malicious scripts into Microsoft Dynamics 365 (on-premises) web pages, which are then executed in victims' browsers when they view those pages. It affects...

This vulnerability allows remote attackers to execute arbitrary code on Microsoft Dynamics Unified Service Desk servers by sending specially crafted requests. It affects organizations using Microsoft ...

This vulnerability allows remote attackers to execute arbitrary code on Microsoft Dynamics 365 On-Premises servers without authentication. It affects organizations running vulnerable versions of Dynam...

This vulnerability allows remote attackers to execute arbitrary code on Microsoft Dynamics 365 On-Premises servers. Attackers can exploit this without authentication to gain full control of affected s...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 Customer Engagement that allows attackers to inject malicious scripts into web pages viewed by other users. It affects orga...

CVE-2021-42316 is a remote code execution vulnerability in Microsoft Dynamics 365 On-Premises that allows authenticated attackers to execute arbitrary code on affected servers. This affects organizati...

CVE-2021-40457 is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 Customer Engagement that allows attackers to inject malicious scripts into web pages viewed by other users. This ...

This vulnerability allows an authenticated attacker to execute arbitrary code on Microsoft Dynamics 365 On-Premises servers by sending specially crafted requests. It affects organizations running vuln...

This is a remote code execution vulnerability in Microsoft Dynamics 365 (on-premises) where improper input sanitization allows authenticated attackers to execute arbitrary code. The vulnerability affe...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 (on-premises) that allows authenticated attackers to inject malicious scripts into web requests. When exploited, these scri...

This is an elevation of privilege vulnerability in Microsoft Dynamics On-Premise v9 that allows authenticated users with customizer privileges to execute arbitrary code on the Web Role server. Attacke...

This vulnerability in Microsoft Dynamics 365 (on-premises) allows unauthorized attackers to access sensitive information over the network. Attackers can exploit this to view confidential data without ...

This vulnerability in Microsoft Dynamics 365 (on-premises) allows unauthorized attackers to access sensitive information over the network. Attackers can exploit this to disclose confidential data stor...

This cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 (on-premises) allows attackers to inject malicious scripts into web pages. When exploited, it enables spoofing attacks where use...

This vulnerability in Microsoft Dynamics 365 (On-Premises) allows an authenticated attacker to access sensitive information they shouldn't have permission to view. It affects organizations running on-...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 (on-premises) that allows authenticated attackers to inject malicious scripts into web requests. When exploited, these scri...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 (on-premises) that allows authenticated attackers to inject malicious scripts into web requests. When exploited, these scri...

CVE-2020-16943 is an elevation of privilege vulnerability in Microsoft Dynamics 365 Commerce that allows unauthenticated attackers to update data without proper authorization by sending specially craf...

This is a remote code execution vulnerability in Microsoft Dynamics 365 (on-premises) where improper input sanitization allows authenticated attackers to execute arbitrary code. The vulnerability affe...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 on-premises that allows authenticated attackers to inject malicious scripts. When exploited, these scripts execute with the...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 (on-premises) that allows authenticated attackers to inject malicious scripts into web requests. When exploited, these scri...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 (on-premises) that allows authenticated attackers to inject malicious scripts into web requests. When exploited, these scri...

This is a cross-site scripting (XSS) vulnerability in Microsoft Dynamics 365 (on-premises) where improper input sanitization allows authenticated attackers to inject malicious scripts. Successful expl...