CVE-2023-36016
published 2023-11-14CVE-2023-36016: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
low3.4CVSS 3.1
AVNACLPRHUIRSCCNILAN
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | dynamics_365 | >= 9.0 < 9.0.51.06 | 9.0.51.06 |
| microsoft | dynamics_365 | >= 9.1 < 9.1.23.10 | 9.1.23.10 |
| microsoft | microsoft_dynamics_365_version_9.0 | >= 9.0.0 < 9.0.51.06 | 9.0.51.06 |
| microsoft | microsoft_dynamics_365_version_9.1 | >= 9.0 < 9.1.23.10 | 9.1.23.10 |
| msrc | microsoft_dynamics_365_version_9.0 | — | — |
| msrc | microsoft_dynamics_365_version_9.1 | — | — |
CVSS provenance
nvdv3.13.4LOWCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:L/A:N
osv7.8HIGH