Microsoft Dynamics 365 vulnerabilities

87 known vulnerabilities affecting microsoft/dynamics_365.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL1HIGH23MEDIUM61LOW2

Vulnerabilities

Page 2 of 5

CVE-2023-36410MEDIUMCVSS 5.4≥ 9.1, < 9.1.23.102023-11-14

CVE-2023-36410 [MEDIUM] CWE-79 CVE-2023-36410: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-36031MEDIUMCVSS 5.4≥ 9.1, < 9.1.23.102023-11-14

CVE-2023-36031 [MEDIUM] CWE-79 CVE-2023-36031: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-36016LOWCVSS 3.4≥ 9.0, < 9.0.51.06≥ 9.1, < 9.1.23.102023-11-14

CVE-2023-36016 [LOW] CWE-79 CVE-2023-36016: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-36429MEDIUMCVSS 6.5≥ 9.0, < 9.0.50.03≥ 9.1, < 9.1.22.042023-10-10

CVE-2023-36429 [MEDIUM] CWE-643 CVE-2023-36429: Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

nvd

CVE-2023-36416MEDIUMCVSS 6.1≥ 9.0, < 9.0.47.08≥ 9.1, < 9.1.18.222023-10-10

CVE-2023-36416 [MEDIUM] CWE-79 CVE-2023-36416: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-36433MEDIUMCVSS 6.5≥ 9.0, < 9.0.49.04≥ 9.1, < 9.1.21.052023-10-10

CVE-2023-36433 [MEDIUM] CWE-643 CVE-2023-36433: Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

nvd

CVE-2023-36800MEDIUMCVSS 5.4fixed in 10.0.16952023-09-12

CVE-2023-36800 [MEDIUM] CWE-79 CVE-2023-36800: Dynamics Finance and Operations Cross-site Scripting Vulnerability Dynamics Finance and Operations Cross-site Scripting Vulnerability

nvd

CVE-2023-36886MEDIUMCVSS 5.4≥ 9.0, < 9.0.49.04≥ 9.1, < 9.1.21.052023-09-12

CVE-2023-36886 [MEDIUM] CWE-79 CVE-2023-36886: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-38164MEDIUMCVSS 5.4≥ 9.0, < 9.0.49.04≥ 9.1, < 9.1.21.052023-09-12

CVE-2023-38164 [MEDIUM] CWE-79 CVE-2023-38164: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-35389MEDIUMCVSS 6.5≥ 9.0, < 9.0.47.08≥ 9.1, < 9.1.18.222023-08-08

CVE-2023-35389 [MEDIUM] CWE-611 CVE-2023-35389: Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability

nvd

CVE-2023-35335HIGHCVSS 8.2≥ 9.0, < 9.0.47.08≥ 9.1, < 9.1.18.222023-07-11

CVE-2023-35335 [HIGH] CWE-79 CVE-2023-35335: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-33171MEDIUMCVSS 6.1≥ 9.0, < 9.0.47.08≥ 9.1, < 9.1.18.222023-07-11

CVE-2023-33171 [MEDIUM] CWE-79 CVE-2023-33171: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-28309MEDIUMCVSS 5.4≥ 9.0, < 9.0.46.15≥ 9.1, < 9.1.17.292023-04-11

CVE-2023-28309 [MEDIUM] CWE-79 CVE-2023-28309: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-28314MEDIUMCVSS 6.1≥ 9.0, < 9.0.46.15≥ 9.1, < 9.1.17.292023-04-11

CVE-2023-28314 [MEDIUM] CWE-79 CVE-2023-28314: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-24920MEDIUMCVSS 5.4≥ 9.0, < 9.0.45.11≥ 9.1, < 9.1.16.202023-03-14

CVE-2023-24920 [MEDIUM] CWE-352 CVE-2023-24920: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-24879MEDIUMCVSS 5.4≥ 9.0, < 9.0.45.11≥ 9.1, < 9.1.16.202023-03-14

CVE-2023-24879 [MEDIUM] CWE-79 CVE-2023-24879: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-24921MEDIUMCVSS 5.4≥ 9.0, < 9.0.45.11≥ 9.1, < 9.1.16.202023-03-14

CVE-2023-24921 [MEDIUM] CWE-79 CVE-2023-24921: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-24922MEDIUMCVSS 6.5≥ 9.0, < 9.0.45.11≥ 9.1, < 9.1.16.202023-03-14

CVE-2023-24922 [MEDIUM] CWE-643 CVE-2023-24922: Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

nvd

CVE-2023-24891MEDIUMCVSS 5.4≥ 9.0, < 9.0.45.11≥ 9.1, < 9.1.16.202023-03-14

CVE-2023-24891 [MEDIUM] CWE-79 CVE-2023-24891: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

CVE-2023-24919MEDIUMCVSS 5.4≥ 9.0, < 9.0.45.11≥ 9.1, < 9.1.16.202023-03-14

CVE-2023-24919 [MEDIUM] CWE-79 CVE-2023-24919: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

nvd

← Previous2 / 5Next →