Vulnerabilities > Microsoft > Dynamics GP
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-02-09 | CVE-2022-23269 | Unspecified vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP Spoofing Vulnerability | 5.4 |
2022-02-09 | CVE-2022-23271 | Unspecified vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP Elevation Of Privilege Vulnerability | 6.5 |
2022-02-09 | CVE-2022-23272 | Unspecified vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP Elevation Of Privilege Vulnerability | 8.1 |
2022-02-09 | CVE-2022-23273 | Unspecified vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP Elevation Of Privilege Vulnerability | 7.1 |
2022-02-09 | CVE-2022-23274 | Unspecified vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP Remote Code Execution Vulnerability | 8.8 |
2010-05-26 | CVE-2010-2083 | Credentials Management vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP has a default value of ACCESS for the system password, which might make it easier for remote authenticated users to bypass intended access restrictions via unspecified vectors. | 4.0 |
2010-05-21 | CVE-2010-2011 | Cryptographic Issues vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP uses a substitution cipher to encrypt the system password field and unspecified other fields, which makes it easier for remote authenticated users to obtain sensitive information by decrypting a field's contents. | 4.0 |
2006-12-31 | CVE-2006-5266 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft Dynamics GP Multiple buffer overflows in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allow remote attackers to execute arbitrary code via (1) a crafted Distributed Process Manager (DPM) message to the (a) DPM component, or a (2) long string or (3) long IP address in a Distributed Process Server (DPS) message to the DPM or (b) DPS component. | 7.5 |
2006-12-31 | CVE-2006-5265 | Improper Input Validation vulnerability in Microsoft Dynamics GP Unspecified vulnerability in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allows remote attackers to cause a denial of service (crash) via an invalid magic number in a Distributed Process Server (DPS) message. | 5.0 |