Vulnerabilities > Microsoft > Dynamics 365
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-12 | CVE-2023-38164 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | 5.4 |
| 2023-07-11 | CVE-2023-33171 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | 6.1 |
| 2023-04-11 | CVE-2023-28309 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | 5.4 |
| 2023-03-14 | CVE-2023-24922 | Unspecified vulnerability in Microsoft Dynamics 365 9.1 Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | 6.5 |
| 2022-01-11 | CVE-2022-21932 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 9.0 Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability | 5.4 |
| 2020-08-17 | CVE-2020-1591 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 9.0 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. | 5.4 |
| 2020-05-21 | CVE-2020-1063 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.2/9.0 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability'. | 5.4 |
| 2020-01-24 | CVE-2018-8654 | Improper Privilege Management vulnerability in Microsoft Dynamics 365 8.0 An elevation of privilege vulnerability exists in Microsoft Dynamics 365 Server, aka 'Microsoft Dynamics 365 Elevation of Privilege Vulnerability'. | 6.5 |
| 2020-01-14 | CVE-2020-0656 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 7.0 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability'. | 5.4 |
| 2019-10-10 | CVE-2019-1375 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability'. | 5.4 |