CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2021-36950 – Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
https://notcve.org/view.php?id=CVE-2021-36950
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Una Vulnerabilidad de tipo Cross-site Scripting en Microsoft Dynamics 365 (on-premises) • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36950 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0CVE-2021-36946 – Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
https://notcve.org/view.php?id=CVE-2021-36946
Microsoft Dynamics Business Central Cross-site Scripting Vulnerability Una Vulnerabilidad de tipo Cross-site Scripting en Microsoft Dynamics Business Central • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36946 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.8EPSS: 27%CPEs: 2EXPL: 0CVE-2021-36941 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-36941
Microsoft Word Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota en Microsoft Word • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36941 •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-34524 – Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-34524
Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota en Microsoft Dynamics 365 (on-premises) • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34524 •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 0CVE-2021-34478 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-34478
Microsoft Office Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota de Microsoft Office This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the glTF-SDK component. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34478 https://www.zerodayinitiative.com/advisories/ZDI-21-1024 •