CVE-2019-1375
published 2019-10-10CVE-2019-1375: A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected…
medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability'.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | dynamics_365 | >= 9.0 < 9.0.9.4 | 9.0.9.4 |
| microsoft | microsoft_dynamics_365 | — | — |
| msrc | microsoft_dynamics_365_version_9.0 | — | — |