Vulnerabilities > Microsoft > Dynamics 365
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-14 | CVE-2019-1229 | Unspecified vulnerability in Microsoft Dynamics 365 9.0 An elevation of privilege vulnerability exists in Dynamics On-Premise v9. | 8.8 |
| 2019-05-16 | CVE-2019-1008 | Unspecified vulnerability in Microsoft Dynamics 365 and Dynamics CRM 2015 A security feature bypass vulnerability exists in Dynamics On Premise, aka 'Microsoft Dynamics On-Premise Security Feature Bypass'. | 5.9 |
| 2018-11-14 | CVE-2018-8609 | Improper Encoding or Escaping of Output vulnerability in Microsoft Dynamics 365 8.0/8.2 A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) version 8 when the server fails to properly sanitize web requests to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Remote Code Execution Vulnerability." This affects Microsoft Dynamics 365. | 8.8 |
| 2018-11-14 | CVE-2018-8608 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.0/8.2 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. | 5.4 |
| 2018-11-14 | CVE-2018-8607 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.0/8.2 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. | 5.4 |
| 2018-11-14 | CVE-2018-8606 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.0/8.2 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. | 5.4 |
| 2018-11-14 | CVE-2018-8605 | Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.0/8.2 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. | 5.4 |