Lucene search
HistoryFeb 13, 2024 - 6:15 p.m.
CVE-2024-21327
microsoft
dynamics 365
xss
vulnerability
nvd
cve-2024-21327
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N
7.3 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
12.7%
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
Affected configurations
Node
microsoftdynamics_365_business_centralRange9.0–9.1.25.17customer_engagement_v
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | dynamics_365_business_central | * | cpe:2.3:a:microsoft:dynamics_365_business_central:*:*:*:*:*:customer_engagement_v:*:* |
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft Dynamics 365 Customer Engagement V9.1",
"cpes": [
"cpe:2.3:a:microsoft:dynamics_365:9.1:*:*:*:customer_engagement:*:*:*"
],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "9.0",
"lessThan": "9.1.25.17",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2024-21327
2024-02-13 18:15:48
prion
prion
Cross site scripting
2024-02-13 18:15:00
cvelist
cvelist
mscve
mscve
mskb
mskb
Service Update 1.25 for Microsoft Dynamics CRM (on-premises) 9.1
2024-02-13 08:00:00
nessus
nessus
Security Updates for Microsoft Dynamics 365 (on-premises) (February 2024)
2024-02-14 00:00:00
kaspersky
kaspersky
KLA63963 Multiple vulnerabilities in Microsoft Dynamics
2024-02-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - February 2024
2024-02-13 21:26:21
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N
7.3 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
12.7%
Related for CVE-2024-21327