Microsoft Dynamics 365 Version 8.2 vulnerabilities
7 known vulnerabilities affecting microsoft/microsoft_dynamics_365_version_8.2.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM7
Vulnerabilities
Page 1 of 1
CVE-2021-24101MEDIUMCVSS 6.5≥ 8.0, < publication2021-02-25
CVE-2021-24101 [MEDIUM] CVE-2021-24101: Microsoft Dataverse Information Disclosure Vulnerability
Microsoft Dataverse Information Disclosure Vulnerability
cvelistv5nvd
CVE-2020-17147MEDIUMCVSS 5.4≥ 8.0, < publication2020-12-10
CVE-2020-17147 [MEDIUM] CWE-79 CVE-2020-17147: Dynamics CRM Webclient Cross-site Scripting Vulnerability
Dynamics CRM Webclient Cross-site Scripting Vulnerability
cvelistv5nvd
CVE-2020-17018MEDIUMCVSS 5.4≥ 8.0, < publication2020-11-11
CVE-2020-17018 [MEDIUM] CWE-79 CVE-2020-17018: Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
cvelistv5nvd
CVE-2020-16956MEDIUMCVSS 5.4≥ 8.0, < publication2020-10-16
CVE-2020-16956 [MEDIUM] CWE-79 CVE-2020-16956: <p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not pr
A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected Dynamics server.
The attacker who successfully exploited the vu
cvelistv5nvd
CVE-2020-16878MEDIUMCVSS 5.4≥ 8.0, < publication2020-09-11
CVE-2020-16878 [MEDIUM] CWE-79 CVE-2020-16878: <p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not pr
A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected Dynamics server.
The attacker who successfully exploited the vu
cvelistv5nvd
CVE-2020-16861MEDIUMCVSS 5.4≥ 8.0, < publication2020-09-11
CVE-2020-16861 [MEDIUM] CWE-79 CVE-2020-16861: <p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not pr
A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected Dynamics server.
The attacker who successfully exploited the vu
cvelistv5nvd
CVE-2020-16871MEDIUMCVSS 5.4≥ 8.0, < publication2020-09-11
CVE-2020-16871 [MEDIUM] CWE-79 CVE-2020-16871: <p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not pr
A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected Dynamics server.
The attacker who successfully exploited the vu
cvelistv5nvd