~/cve/CVE-2021-36946

pipeline liveDigest Docs

CVE-2021-36946

published 2021-08-12

CVE-2021-36946: Microsoft Dynamics Business Central Cross-site Scripting Vulnerability

medium5.4CVSS 3.1

AVNACLPRLUIRSCCLILAN

Microsoft Dynamics Business Central Cross-site Scripting Vulnerability

Affected

15 ranges

Vendor	Product	Version range	Fixed in
linux	linux_kernel	>= 0 < 4.15.0-193.204	4.15.0-193.204
microsoft	dynamics_365_business_central	—	—
microsoft	dynamics_365_business_central	—	—
microsoft	dynamics_365_business_central_spring_2019_update	>= 14.0.0 < Application Build 14.27.47563, Platform Build 14.0	Application Build 14.27.47563, Platform Build 14.0
microsoft	dynamics_nav	—	—
microsoft	dynamics_nav	—	—
microsoft	microsoft_dynamics_365_business_central_2020_release_wave_1_update_16.15	>= 16.0 < Application Build 16.15.28500, Platform Build 16.0	Application Build 16.15.28500, Platform Build 16.0
microsoft	microsoft_dynamics_365_business_central_2020_release_wave_2_update_17.9	>= 17.0 < Application Build 17.9.28504, Platform Build 17.0.	Application Build 17.9.28504, Platform Build 17.0.
microsoft	microsoft_dynamics_nav_2017	>= 1.0 < 30601	30601
microsoft	microsoft_dynamics_nav_2018	>= 1.0 < 47562	47562
msrc	dynamics_365_business_central_2019_spring_update	—	—
msrc	microsoft_dynamics_365_business_central_2020_release_wave_1_update_16.15	—	—
msrc	microsoft_dynamics_365_business_central_2020_release_wave_2_update_17.9	—	—
msrc	microsoft_dynamics_nav_2017	—	—
msrc	microsoft_dynamics_nav_2018	—	—

CVSS provenance

nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

osv6.7MEDIUM