Security News > 2025 > January > Severe Security Flaws Patched in Microsoft Dynamics 365 and Power Apps Web API
2025-01-02 12:53
Details have emerged about three now-patched security vulnerabilities in Dynamics 365 and Power Apps Web API that could result in data exposure. The flaws, discovered by Melbourne-based cybersecurity company Stratus Security, have been addressed as of May 2024. Two of the three shortcomings reside in Power Platform's OData Web API Filter, while the third vulnerability is rooted in the FetchXML
News URL
https://thehackernews.com/2025/01/severe-security-flaws-patched-in.html
Related news
- CISA orders federal agencies to secure Microsoft 365 tenants (source)
- Microsoft 365 users hit by random product deactivation errors (source)
- Microsoft fixes bug behind random Office 365 deactivation errors (source)
- API security blind spots put businesses at risk (source)
- Microsoft MFA outage blocking access to Microsoft 365 apps (source)
- Azure, Microsoft 365 MFA outage locks out users across regions (source)
- Microsoft 365 apps crash on Windows Server after Office update (source)
- Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
- 3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security Update (source)
- FTC orders GoDaddy to fix poor web hosting security practices (source)