Vulnerabilities > Microsoft > Dynamics 365

DATE CVE VULNERABILITY TITLE RISK
2020-10-16 CVE-2020-16978 Cross-site Scripting vulnerability in Microsoft Dynamics 365 9.0
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server.
network
low complexity
microsoft CWE-79
5.4
5.4
2020-10-16 CVE-2020-16956 Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.2/9.0
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server.
network
low complexity
microsoft CWE-79
5.4
5.4
2020-10-16 CVE-2020-16943 Unspecified vulnerability in Microsoft Dynamics 365
<p>An elevation of privilege vulnerability exists in Microsoft Dynamics 365 Commerce.
low complexity
microsoft
6.5
6.5
2020-09-11 CVE-2020-16878 Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.2/9.0
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server.
network
low complexity
microsoft CWE-79
5.4
5.4
2020-09-11 CVE-2020-16872 Cross-site Scripting vulnerability in Microsoft Dynamics 365 9.0
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server.
network
low complexity
microsoft CWE-79
7.6
7.6
2020-09-11 CVE-2020-16871 Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.2/9.0
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server.
network
low complexity
microsoft CWE-79
5.4
5.4
2020-09-11 CVE-2020-16864 Cross-site Scripting vulnerability in Microsoft Dynamics 365 9.0
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server.
network
low complexity
microsoft CWE-79
5.4
5.4
2020-09-11 CVE-2020-16862 Unspecified vulnerability in Microsoft Dynamics 365 9.0
<p>A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) when the server fails to properly sanitize web requests to an affected Dynamics server.
network
high complexity
microsoft
7.1
7.1
2020-09-11 CVE-2020-16861 Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.2/9.0
<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server.
network
low complexity
microsoft CWE-79
5.4
5.4
2020-09-11 CVE-2020-16860 Unspecified vulnerability in Microsoft Dynamics 365 9.0
<p>A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) when the server fails to properly sanitize web requests to an affected Dynamics server.
network
high complexity
microsoft
6.8
6.8