Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft dynamics 365 9.0 vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2020-16871
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a specially crafted reque...
Microsoft Dynamics 365 8.2
Microsoft Dynamics 365 9.0
NA
CVE-2022-34700
Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability
Microsoft Dynamics 365 9.0
Microsoft Dynamics 365 9.1
1 Article
3.5
CVSSv2
CVE-2021-41354
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Microsoft Dynamics 365 9.0
Microsoft Dynamics 365 9.1
3.5
CVSSv2
CVE-2021-41353
Microsoft Dynamics 365 (on-premises) Spoofing Vulnerability
Microsoft Dynamics 365 9.0
Microsoft Dynamics 365 9.1
9
CVSSv2
CVE-2022-23259
Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability
Microsoft Dynamics 365 9.0
Microsoft Dynamics 365 9.1
NA
CVE-2022-35805
Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability
Microsoft Dynamics 365 9.0
Microsoft Dynamics 365 9.1
1 Article
4
CVSSv2
CVE-2021-24101
Microsoft Dataverse Information Disclosure Vulnerability
Microsoft Dynamics 365 8.2
Microsoft Dynamics 365 9.0
3.5
CVSSv2
CVE-2020-1063
A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability'.
Microsoft Dynamics 365 8.2
Microsoft Dynamics 365 9.0
6.5
CVSSv2
CVE-2021-34524
Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability
Microsoft Dynamics 365 9.0
Microsoft Dynamics 365 9.1
3.5
CVSSv2
CVE-2020-16861
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a specially crafted reque...
Microsoft Dynamics 365 8.2
Microsoft Dynamics 365 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »