Products
Microsoft Dynamics
133 CVEs since tracking began. Latest: 2026-06.
Total CVEs
133
Critical
27
Important
106
Exploited
0
Publicly Disclosed
0
All CVEs for this product 133
| CVE | Title | Severity | CVSS | Component | Month | Exploited | Disclosed |
|---|---|---|---|---|---|---|---|
| CVE-2026-47647 | Dynamics 365 Elevation of Privilege Vulnerability | Critical | 9.9 |
Microsoft Dynamics 365 | 2026-06 | - | - |
| CVE-2026-40371 | Microsoft Dynamics 365 (on-premises) Elevation of Privilege Vulnerability | Important | 8.8 |
Microsoft Dynamics 365 (on-premises) | 2026-06 | - | - |
| CVE-2026-47646 | Dynamics 365 Customer Voice Spoofing Vulnerability | Critical | 9.3 |
Dynamics 365 Customer Voice | 2026-06 | - | - |
| CVE-2026-40417 | Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability | Important | 7.8 |
Dynamics Business Central | 2026-05 | - | - |
| CVE-2026-42898 | Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability | Critical | 9.9 |
Microsoft Dynamics 365 (on-premises) | 2026-05 | - | - |
| CVE-2026-42833 | Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability | Important | 9.1 |
Microsoft Dynamics 365 (on-premises) | 2026-05 | - | - |
| CVE-2026-33821 | Microsoft Dynamics 365 Customer Insights Elevation of Privilege Vulnerability | Critical | 9.9 |
Microsoft Dynamics 365 Customer Insights | 2026-05 | - | - |
| CVE-2026-32210 | Microsoft Dynamics 365 (online) Spoofing Vulnerability | Critical | 7.5 |
Microsoft Dynamics 365 (Online) | 2026-04 | - | - |
| CVE-2026-33103 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important | 5.5 |
Microsoft Dynamics 365 (on-premises) | 2026-04 | - | - |
| CVE-2025-62206 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important | 6.5 |
Microsoft Dynamics 365 (on-premises) | 2025-11 | - | - |
| CVE-2025-62210 | Dynamics 365 Field Service (online) Spoofing Vulnerability | Important | 8.7 |
Dynamics 365 Field Service (online) | 2025-11 | - | - |
| CVE-2025-64655 | Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability | Critical | 9.8 |
Dynamics OmniChannel SDK Storage Containers | 2025-11 | - | - |
| CVE-2025-62211 | Dynamics 365 Field Service (online) Spoofing Vulnerability | Important | 8.7 |
Dynamics 365 Field Service (online) | 2025-11 | - | - |
| CVE-2025-55238 | Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability | Critical | 7.5 |
Dynamics 365 FastTrack Implementation Assets | 2025-09 | - | - |
| CVE-2025-49745 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics 365 (on-premises) | 2025-08 | - | - |
| CVE-2025-53728 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important | 6.5 |
Microsoft Dynamics 365 (on-premises) | 2025-08 | - | - |
| CVE-2025-49715 | Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability | Critical | 7.5 |
Dynamics 365 FastTrack Implementation Assets | 2025-06 | - | - |
| CVE-2025-29821 | Microsoft Dynamics Business Central Information Disclosure Vulnerability | Important | 5.5 |
Dynamics Business Central | 2025-04 | - | - |
| CVE-2025-30391 | Microsoft Dynamics Information Disclosure Vulnerability | Critical | 7.5 |
Microsoft Dynamics | 2025-04 | - | - |
| CVE-2025-21177 | Microsoft Dynamics 365 Sales Elevation of Privilege Vulnerability | Critical | 8.8 |
Microsoft Dynamics 365 Sales | 2025-02 | - | - |
| CVE-2024-49053 | Microsoft Dynamics 365 Sales Spoofing Vulnerability | Important | 7.6 |
Microsoft Dynamics 365 Sales | 2024-11 | - | - |
| CVE-2024-38225 | Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability | Important | 9.8 |
Dynamics Business Central | 2024-09 | - | - |
| CVE-2024-43476 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics 365 (on-premises) | 2024-09 | - | - |
| CVE-2024-43460 | Dynamics 365 Business Central Elevation of Privilege Vulnerability | Critical | 8.8 |
Dynamics Business Central | 2024-09 | - | - |
| CVE-2024-38211 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 8.2 |
Microsoft Dynamics | 2024-08 | - | - |
| CVE-2024-38166 | Microsoft Dynamics 365 Cross-site Scripting Vulnerability | Critical | 6.1 |
Microsoft Dynamics | 2024-08 | - | - |
| CVE-2024-30061 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important | 7.3 |
Microsoft Dynamics | 2024-07 | - | - |
| CVE-2024-38182 | Microsoft Dynamics 365 Elevation of Privilege Vulnerability | Critical | 9.8 |
Microsoft Dynamics | 2024-07 | - | - |
| CVE-2024-35248 | Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability | Important | 7.3 |
Dynamics Business Central | 2024-06 | - | - |
| CVE-2024-35249 | Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability | Important | 8.8 |
Dynamics Business Central | 2024-06 | - | - |
| CVE-2024-35263 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important | 5.7 |
Microsoft Dynamics | 2024-06 | - | - |
| CVE-2024-30047 | Dynamics 365 Customer Insights Spoofing Vulnerability | Important | 4.1 |
Microsoft Dynamics 365 Customer Insights | 2024-05 | - | - |
| CVE-2024-30048 | Dynamics 365 Customer Insights Spoofing Vulnerability | Important | 4.1 |
Microsoft Dynamics 365 Customer Insights | 2024-05 | - | - |
| CVE-2024-21419 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2024-03 | - | - |
| CVE-2024-21327 | Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability | Important | 7.6 |
Microsoft Dynamics | 2024-02 | - | - |
| CVE-2024-21389 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 7.6 |
Microsoft Dynamics | 2024-02 | - | - |
| CVE-2024-21393 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 7.6 |
Microsoft Dynamics | 2024-02 | - | - |
| CVE-2024-21394 | Dynamics 365 Field Service Spoofing Vulnerability | Important | 7.6 |
Microsoft Dynamics | 2024-02 | - | - |
| CVE-2024-21396 | Dynamics 365 Sales Spoofing Vulnerability | Important | 7.6 |
Microsoft Dynamics | 2024-02 | - | - |
| CVE-2024-21328 | Dynamics 365 Sales Spoofing Vulnerability | Important | 7.6 |
Microsoft Dynamics | 2024-02 | - | - |
| CVE-2024-21380 | Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability | Critical | 8 |
Microsoft Dynamics | 2024-02 | - | - |
| CVE-2024-21395 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 8.2 |
Microsoft Dynamics | 2024-02 | - | - |
| CVE-2023-36020 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-12 | - | - |
| CVE-2023-35621 | Microsoft Dynamics 365 Finance and Operations Denial of Service Vulnerability | Important | 7.5 |
Microsoft Dynamics | 2023-12 | - | - |
| CVE-2023-36410 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-11 | - | - |
| CVE-2023-36007 | Microsoft Send Customer Voice survey from Dynamics 365 Spoofing Vulnerability | Important | 4.1 |
Microsoft Dynamics | 2023-11 | - | - |
| CVE-2023-36030 | Microsoft Dynamics 365 Sales Spoofing Vulnerability | Important | 6.1 |
Microsoft Dynamics 365 Sales | 2023-11 | - | - |
| CVE-2023-36031 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-11 | - | - |
| CVE-2023-36016 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 3.4 |
Microsoft Dynamics | 2023-11 | - | - |
| CVE-2023-36433 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important | 6.5 |
Microsoft Dynamics | 2023-10 | - | - |
| CVE-2023-36429 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important | 6.5 |
Microsoft Dynamics | 2023-10 | - | - |
| CVE-2023-36416 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 6.1 |
Microsoft Dynamics | 2023-10 | - | - |
| CVE-2023-36886 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-09 | - | - |
| CVE-2023-38164 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-09 | - | - |
| CVE-2023-36800 | Dynamics Finance and Operations Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics Finance & Operations | 2023-09 | - | - |
| CVE-2023-35389 | Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability | Important | 6.5 |
Microsoft Dynamics | 2023-08 | - | - |
| CVE-2023-38167 | Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability | Important | 7.2 |
Dynamics Business Central Control | 2023-08 | - | - |
| CVE-2023-33171 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 6.1 |
Microsoft Dynamics | 2023-07 | - | - |
| CVE-2023-35335 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 8.2 |
Microsoft Dynamics | 2023-07 | - | - |
| CVE-2023-24896 | Dynamics 365 Finance Spoofing Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-06 | - | - |
| CVE-2023-28309 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-04 | - | - |
| CVE-2023-28313 | Microsoft Dynamics 365 Customer Voice Cross-Site Scripting Vulnerability | Important | 6.1 |
Dynamics 365 Customer Voice | 2023-04 | - | - |
| CVE-2023-28314 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 6.1 |
Microsoft Dynamics | 2023-04 | - | - |
| CVE-2023-24919 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-03 | - | - |
| CVE-2023-24879 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-03 | - | - |
| CVE-2023-24920 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-03 | - | - |
| CVE-2023-24921 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-03 | - | - |
| CVE-2023-24922 | Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability | Important | 6.5 |
Microsoft Dynamics | 2023-03 | - | - |
| CVE-2023-24891 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-03 | - | - |
| CVE-2023-21778 | Microsoft Dynamics Unified Service Desk Remote Code Execution Vulnerability | Important | 8 |
Microsoft Dynamics | 2023-02 | - | - |
| CVE-2023-21807 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 6.5 |
Microsoft Dynamics | 2023-02 | - | - |
| CVE-2023-21570 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-02 | - | - |
| CVE-2023-21571 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-02 | - | - |
| CVE-2023-21572 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 6.5 |
Microsoft Dynamics | 2023-02 | - | - |
| CVE-2023-21573 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2023-02 | - | - |
| CVE-2022-41127 | Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability | Critical | 8.5 |
Microsoft Dynamics | 2022-12 | - | - |
| CVE-2022-41066 | Microsoft Business Central Information Disclosure Vulnerability | Important | 4.4 |
Microsoft Dynamics | 2022-11 | - | - |
| CVE-2022-35805 | Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability | Critical | 8.8 |
Microsoft Dynamics | 2022-09 | - | - |
| CVE-2022-34700 | Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability | Critical | 8.8 |
Microsoft Dynamics | 2022-09 | - | - |
| CVE-2022-23259 | Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability | Critical | 8.8 |
Microsoft Dynamics | 2022-04 | - | - |
| CVE-2022-21957 | Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability | Important | 7.2 |
Microsoft Dynamics | 2022-02 | - | - |
| CVE-2022-23269 | Microsoft Dynamics GP Spoofing Vulnerability | Important | 5.4 |
Microsoft Dynamics GP | 2022-02 | - | - |
| CVE-2022-23271 | Microsoft Dynamics GP Elevation Of Privilege Vulnerability | Important | 6.5 |
Microsoft Dynamics GP | 2022-02 | - | - |
| CVE-2022-23272 | Microsoft Dynamics GP Elevation Of Privilege Vulnerability | Important | 8.1 |
Microsoft Dynamics GP | 2022-02 | - | - |
| CVE-2022-23273 | Microsoft Dynamics GP Elevation Of Privilege Vulnerability | Important | 7.1 |
Microsoft Dynamics GP | 2022-02 | - | - |
| CVE-2022-23274 | Microsoft Dynamics GP Remote Code Execution Vulnerability | Important | 8.8 |
Microsoft Dynamics GP | 2022-02 | - | - |
| CVE-2022-21932 | Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2022-01 | - | - |
| CVE-2022-21891 | Microsoft Dynamics 365 (on-premises) Spoofing Vulnerability | Important | 4.3 |
Microsoft Dynamics | 2022-01 | - | - |
| CVE-2021-42316 | Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability | Critical | 8.8 |
Microsoft Dynamics | 2021-11 | - | - |
| CVE-2021-40457 | Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability | Important | 7.4 |
Microsoft Dynamics | 2021-10 | - | - |
| CVE-2021-41353 | Microsoft Dynamics 365 (on-premises) Spoofing Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2021-10 | - | - |
| CVE-2021-41354 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2021-10 | - | - |
| CVE-2021-40440 | Microsoft Dynamics Business Central Cross-site Scripting Vulnerability | Important | 5.4 |
Dynamics Business Central Control | 2021-09 | - | - |
| CVE-2021-34524 | Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability | Important | 8.1 |
Microsoft Dynamics | 2021-08 | - | - |
| CVE-2021-36946 | Microsoft Dynamics Business Central Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2021-08 | - | - |
| CVE-2021-36950 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2021-08 | - | - |
| CVE-2021-28461 | Dynamics Finance and Operations Cross-site Scripting Vulnerability | Important | 6.1 |
Microsoft Dynamics Finance & Operations | 2021-05 | - | - |
| CVE-2021-1724 | Microsoft Dynamics Business Central Cross-site Scripting Vulnerability | Important | 6.1 |
Microsoft Dynamics | 2021-03 | - | - |
| CVE-2021-24101 | Microsoft Dataverse Information Disclosure Vulnerability | Important | 6.5 |
Microsoft Dynamics | 2021-03 | - | - |
| CVE-2020-17147 | Dynamics CRM Webclient Cross-site Scripting Vulnerability | Important | 8.7 |
Microsoft Dynamics | 2020-12 | - | - |
| CVE-2020-17152 | Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability | Critical | 8.8 |
Microsoft Dynamics | 2020-12 | - | - |
| CVE-2020-17158 | Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability | Critical | 8.8 |
Microsoft Dynamics | 2020-12 | - | - |
| CVE-2020-17133 | Microsoft Dynamics Business Central/NAV Information Disclosure | Important | 6.5 |
Microsoft Dynamics | 2020-12 | - | - |
| CVE-2020-17005 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-11 | - | - |
| CVE-2020-17006 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-11 | - | - |
| CVE-2020-17018 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-11 | - | - |
| CVE-2020-17021 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-11 | - | - |
| CVE-2020-16943 | Dynamics 365 Commerce Elevation of Privilege Vulnerability | Important | 6.5 |
Microsoft Dynamics | 2020-10 | - | - |
| CVE-2020-16956 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-10 | - | - |
| CVE-2020-16978 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-10 | - | - |
| CVE-2020-16857 | Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability | Critical | 7.1 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-16858 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-16859 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-16860 | Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability | Important | 6.8 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-16861 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-16862 | Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability | Critical | 7.1 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-16864 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-16872 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 7.6 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-16878 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-16871 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-09 | - | - |
| CVE-2020-1591 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-08 | - | - |
| CVE-2020-1182 | Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability | Critical | 7.3 |
Microsoft Dynamics | 2020-08 | - | - |
| CVE-2020-1063 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-05 | - | - |
| CVE-2020-1018 | Microsoft Dynamics Business Central/NAV Information Disclosure | Important | 7.5 |
Microsoft Dynamics | 2020-04 | - | - |
| CVE-2020-1022 | Dynamics Business Central Remote Code Execution Vulnerability | Critical | 8 |
Microsoft Dynamics | 2020-04 | - | - |
| CVE-2020-1049 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-04 | - | - |
| CVE-2020-1050 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 6.1 |
Microsoft Dynamics | 2020-04 | - | - |
| CVE-2020-0905 | Dynamics Business Central Remote Code Execution Vulnerability | Critical | 8 |
Microsoft Dynamics | 2020-03 | - | - |
| CVE-2020-0656 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2020-01 | - | - |
| CVE-2019-1375 | Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability | Important | 5.4 |
Microsoft Dynamics | 2019-10 | - | - |
| CVE-2019-1229 | Dynamics On-Premise Elevation of Privilege Vulnerability | Important | 8.8 |
Microsoft Dynamics | 2019-08 | - | - |
| CVE-2019-1008 | Microsoft Dynamics On-Premise Security Feature Bypass | Important | 5.9 |
Microsoft Dynamics | 2019-05 | - | - |
| CVE-2018-8654 | Microsoft Dynamics 365 Elevation of Privilege Vulnerability | Critical | - | Microsoft Dynamics | 2019-02 | - | - |
Threat Categories 6
| Threat Category | CVEs | Critical |
|---|---|---|
| Spoofing | 76 | 3 |
| Remote Code Execution | 21 | 13 |
| Elevation of Privilege | 17 | 7 |
| Information Disclosure | 17 | 4 |
| Denial of Service | 1 | - |
| Security Feature Bypass | 1 | - |
Components 14
| Component | CVEs | Exploited |
|---|---|---|
| Microsoft Dynamics | 95 | - |
| Microsoft Dynamics 365 (on-premises) | 8 | - |
| Dynamics Business Central | 6 | - |
| Microsoft Dynamics GP | 5 | - |
| Microsoft Dynamics 365 Customer Insights | 3 | - |
| Microsoft Dynamics 365 Sales | 3 | - |
| Dynamics 365 Customer Voice | 2 | - |
| Dynamics 365 FastTrack Implementation Assets | 2 | - |
| Dynamics 365 Field Service (online) | 2 | - |
| Dynamics Business Central Control | 2 | - |
| Microsoft Dynamics Finance & Operations | 2 | - |
| Dynamics OmniChannel SDK Storage Containers | 1 | - |
| Microsoft Dynamics 365 | 1 | - |
| Microsoft Dynamics 365 (Online) | 1 | - |