Microsoft Dynamics 365 Field Service V7 Series vulnerabilities

CVE-2024-38182 [CRITICAL] CWE-1390 CVE-2024-38182: Weak authentication in Microsoft Dynamics 365 allows an unauthenticated attacker to elevate privileg Weak authentication in Microsoft Dynamics 365 allows an unauthenticated attacker to elevate privileges over a network.

CVE-2020-0656 [MEDIUM] CWE-79 CVE-2020-0656: A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not prope A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability'.