6.5
CVSSv2

CVE-2020-16857

Published: 11/09/2020 Updated: 14/09/2020
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Vulnerability Summary

Microsoft Dynamics 365 for Finance and Operations (on-premises) could allow a remote authenticated malicious user to execute arbitrary code on the system. By sending a specially crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system with elevated privileges.

Vulnerability Trend

Github Repositories

Summary of the most current security updates and patches released by Microsoft and other major apps

Patch Tuesdays The latest cybersecurity news on recent current security updates and patches released by Microsoft and other developers September 2020 security releases Adobe Updates for these products: Adobe InDesign Adobe Framemaker Adobe Experience Manager Summary of vulnerability details: Arbitrary code execution Buffer overflow and out of bounds read leading to arbitrary c

Recent Articles

The Register

A nightmare flaw for Exchange Server headlines this month's Patch Tuesday lineup from Microsoft and others.
September sees a bundle of 129 CVE-listed flaws patched by Microsoft. The vast majority of those, 105 in total, are classified as 'important' risks. Another 23 are considered critical bugs, and one is listed as moderate.
None of the bugs have public exploit code or in-the-wild attacks yet.
Of the nearly two-dozen critical patches, Zero Day Initiative's Dustin Childs says ...