Microsoft

Dynamics 365

95 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.5

CVE-2020-17005

  • EPSS 0.8%
  • Veröffentlicht 11.11.2020 07:15:13
  • Zuletzt bearbeitet 21.11.2024 05:07:36

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

3.5

CVE-2020-16978

  • EPSS 0.73%
  • Veröffentlicht 16.10.2020 23:15:17
  • Zuletzt bearbeitet 23.02.2026 18:21:36

<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a...

3.5

CVE-2020-16956

  • EPSS 0.72%
  • Veröffentlicht 16.10.2020 23:15:16
  • Zuletzt bearbeitet 23.02.2026 18:21:31

<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a...

3.3

CVE-2020-16943

  • EPSS 0.57%
  • Veröffentlicht 16.10.2020 23:15:15
  • Zuletzt bearbeitet 23.02.2026 18:21:29

<p>An elevation of privilege vulnerability exists in Microsoft Dynamics 365 Commerce. An unauthenticated attacker who successfully exploited this vulnerability could update data without proper authorization.</p> <p>To exploit the vulnerability, an at...

3.5

CVE-2020-16878

  • EPSS 0.41%
  • Veröffentlicht 11.09.2020 17:15:17
  • Zuletzt bearbeitet 23.02.2026 18:21:14

<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a...

3.5

CVE-2020-16872

  • EPSS 0.51%
  • Veröffentlicht 11.09.2020 17:15:17
  • Zuletzt bearbeitet 23.02.2026 18:21:13

<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a...

3.5

CVE-2020-16871

  • EPSS 0.4%
  • Veröffentlicht 11.09.2020 17:15:17
  • Zuletzt bearbeitet 23.02.2026 18:21:13

<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a...

3.5

CVE-2020-16864

  • EPSS 0.53%
  • Veröffentlicht 11.09.2020 17:15:17
  • Zuletzt bearbeitet 23.02.2026 18:21:13

<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a...

6.5

CVE-2020-16862

  • EPSS 4.13%
  • Veröffentlicht 11.09.2020 17:15:17
  • Zuletzt bearbeitet 23.02.2026 18:21:12

<p>A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) when the server fails to properly sanitize web requests to an affected Dynamics server. An attacker who successfully exploited the vulnerability could run arbitra...

3.5

CVE-2020-16861

  • EPSS 0.54%
  • Veröffentlicht 11.09.2020 17:15:17
  • Zuletzt bearbeitet 23.02.2026 18:21:12

<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a...