CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-29821 – Microsoft Dynamics Business Central Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2025-29821
08 Apr 2025 — Improper input validation in Dynamics Business Central allows an authorized attacker to disclose information locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29821 • CWE-20: Improper Input Validation •
CVSS: 9.0EPSS: 3%CPEs: 3EXPL: 0CVE-2024-43460 – Dynamics 365 Business Central Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-43460
17 Sep 2024 — Improper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43460 • CWE-285: Improper Authorization •
CVSS: 10.0EPSS: 7%CPEs: 2EXPL: 0CVE-2024-38225 – Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-38225
10 Sep 2024 — Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38225 • CWE-287: Improper Authentication •
CVSS: 9.0EPSS: 51%CPEs: 3EXPL: 0CVE-2024-35249 – Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-35249
11 Jun 2024 — Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Microsoft Dynamics 365 Business Central • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35249 • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.5EPSS: 3%CPEs: 3EXPL: 0CVE-2024-35248 – Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-35248
11 Jun 2024 — Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Microsoft Dynamics 365 Business Central • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35248 • CWE-287: Improper Authentication CWE-1390: Weak Authentication •
CVSS: 8.0EPSS: 0%CPEs: 3EXPL: 0CVE-2024-21380 – Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-21380
13 Feb 2024 — Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Dynamics Business Central/NAV • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21380 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38167 – Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-38167
08 Aug 2023 — Microsoft Dynamics Business Central Elevation Of Privilege Vulnerability Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38167 • CWE-284: Improper Access Control •
CVSS: 8.5EPSS: 0%CPEs: 10EXPL: 0CVE-2022-41127 – Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41127
13 Dec 2022 — Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Microsoft Dynamics NAV y Microsoft Dynamics 365 Business Central (On Premises). • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41127 •
CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0CVE-2022-41066 – Microsoft Business Central Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-41066
09 Nov 2022 — Microsoft Business Central Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Business Central • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41066 •
CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 0CVE-2021-40440 – Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
https://notcve.org/view.php?id=CVE-2021-40440
15 Sep 2021 — Microsoft Dynamics Business Central Cross-site Scripting Vulnerability Una vulnerabilidad de tipo Cross-site Scripting de Microsoft Dynamics Business Central • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40440 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •