Vulnerabilities > Microsoft > Dynamics GP > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-02-09 | CVE-2022-23269 | Unspecified vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP Spoofing Vulnerability | 5.4 |
2022-02-09 | CVE-2022-23271 | Unspecified vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP Elevation Of Privilege Vulnerability | 6.5 |
2010-05-26 | CVE-2010-2083 | Credentials Management vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP has a default value of ACCESS for the system password, which might make it easier for remote authenticated users to bypass intended access restrictions via unspecified vectors. | 4.0 |
2010-05-21 | CVE-2010-2011 | Cryptographic Issues vulnerability in Microsoft Dynamics GP Microsoft Dynamics GP uses a substitution cipher to encrypt the system password field and unspecified other fields, which makes it easier for remote authenticated users to obtain sensitive information by decrypting a field's contents. | 4.0 |
2006-12-31 | CVE-2006-5265 | Improper Input Validation vulnerability in Microsoft Dynamics GP Unspecified vulnerability in Microsoft Dynamics GP (formerly Great Plains) 9.0 and earlier allows remote attackers to cause a denial of service (crash) via an invalid magic number in a Distributed Process Server (DPS) message. | 5.0 |