CVE-2021-34524 – Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2021-34524

12 Aug 2021 — Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota en Microsoft Dynamics 365 (on-premises) • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34524 •

CVE-2021-24101 – Microsoft Dataverse Information Disclosure Vulnerability

https://notcve.org/view.php?id=CVE-2021-24101

25 Feb 2021 — Microsoft Dataverse Information Disclosure Vulnerability Una Vulnerabilidad de Divulgación de Información de Microsoft Dataverse • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24101 •

CVE-2020-17158 – Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2020-17158

09 Dec 2020 — Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability Vulnerabilidad de ejecución de código remota de Microsoft Dynamics 365 for Finance and Operations (on-premises) Este CVE ID es diferente de CVE-2020-17152 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17158 •

CVE-2020-17152 – Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2020-17152

09 Dec 2020 — Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability Vulnerabilidad de ejecución de código remota de Microsoft Dynamics 365 for Finance and Operations (on-premises) Este CVE ID es diferente de CVE-2020-17158 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17152 •

CVE-2020-17147 – Dynamics CRM Webclient Cross-site Scripting Vulnerability

https://notcve.org/view.php?id=CVE-2020-17147

09 Dec 2020 — Dynamics CRM Webclient Cross-site Scripting Vulnerability Vulnerabilidad de tipo Cross-site Scripting en el sitio web de Dynamics CRM • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17147 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2020-17021 – Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

https://notcve.org/view.php?id=CVE-2020-17021

11 Nov 2020 — Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Vulnerabilidad de Microsoft Dynamics 365 (on-premises) Cross-site Scripting Este ID de CVE es diferente de CVE-2020-17005, CVE-2020-17006, CVE-2020-17018 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17021 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2020-17018 – Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

https://notcve.org/view.php?id=CVE-2020-17018

11 Nov 2020 — Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Vulnerabilidad de Microsoft Dynamics 365 (on-premises) Cross-site Scripting Este ID de CVE es diferente de CVE-2020-17005, CVE-2020-17006, CVE-2020-17021 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17018 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2020-17005 – Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

https://notcve.org/view.php?id=CVE-2020-17005

11 Nov 2020 — Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability Vulnerabilidad de Microsoft Dynamics 365 (on-premises) Cross-site Scripting Este ID de CVE es diferente de CVE-2020-17006, CVE-2020-17018, CVE-2020-17021 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17005 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2020-16978 – Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability

https://notcve.org/view.php?id=CVE-2020-16978

16 Oct 2020 —

A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected Dynamics server.

The attacker who successfully exploited the vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the current authenticated us... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16978 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVE-2020-16956 – Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability

https://notcve.org/view.php?id=CVE-2020-16956

16 Oct 2020 —

A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected Dynamics server.

The attacker who successfully exploited the vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the current authenticated us... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16956 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •