Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2021-36946
HistoryAug 12, 2021 - 6:15 p.m.

CVE-2021-36946

2021-08-1218:15:10
CWE-79
[email protected]
web.nvd.nist.gov
8
microsoft dynamics business central
xss
vulnerability
cve-2021-36946

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

20.3%

JSON

Microsoft Dynamics Business Central Cross-site Scripting Vulnerability

Affected configurations

Nvd
Node
microsoftdynamics_365_business_centralMatch2019spring_update
OR
microsoftdynamics_365_business_centralMatch2020release_wave_1
OR
microsoftdynamics_365_business_centralMatch2020release_wave_2
OR
microsoftdynamics_navMatch2017
OR
microsoftdynamics_navMatch2018
VendorProductVersionCPE
microsoftdynamics_365_business_central2019cpe:2.3:a:microsoft:dynamics_365_business_central:2019:spring_update:*:*:*:*:*:*
microsoftdynamics_365_business_central2020cpe:2.3:a:microsoft:dynamics_365_business_central:2020:release_wave_1:*:*:*:*:*:*
microsoftdynamics_365_business_central2020cpe:2.3:a:microsoft:dynamics_365_business_central:2020:release_wave_2:*:*:*:*:*:*
microsoftdynamics_nav2017cpe:2.3:a:microsoft:dynamics_nav:2017:*:*:*:*:*:*:*
microsoftdynamics_nav2018cpe:2.3:a:microsoft:dynamics_nav:2018:*:*:*:*:*:*:*

Related

prion 1
cvelist 1
mskb 5
mscve 1
cve 1
nessus 3
kaspersky 1
qualysblog 1
rapid7blog 1
prion
prion
Cross site scripting
2021-08-12 18:15:00
cvelist
cvelist
CVE-2021-36946 Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
2021-08-12 18:12:34
mskb
mskb
Update 17.9 for Microsoft Dynamics 365 Business Central 2020 Release Wave 2 (Application Build 17.9.28504, Platform Build 17.0.28458)
2021-08-10 07:00:00
Update 16.15 for Microsoft Dynamics 365 Business Central 2020 Release Wave 1 (Application Build 16.15.28500, Platform Build 16.0.28457)
2021-08-10 07:00:00
Cumulative Update 56 for Microsoft Dynamics NAV 2017 (Build 30601)
2021-08-10 07:00:00
mscve
mscve
Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
2021-08-10 07:00:00
cve
cve
CVE-2021-36946
2021-08-12 18:15:10
nessus
nessus
Security Updates for Microsoft Dynamics 365 Business Central (August 2021)
2021-08-12 00:00:00
Security Updates for Microsoft Dynamics NAV (August 2021)
2021-08-12 00:00:00
Security Updates for Microsoft Dynamics 365 (on-premises) (August 2021)
2021-08-12 00:00:00
kaspersky
kaspersky
KLA12260 Multiple vulnerabilities in Microsoft Dynamics
2021-08-10 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday (August 2021) – Microsoft 51 Vulnerabilities with 7 Critical, Adobe 29 Vulnerabilities
2021-08-10 19:58:49
rapid7blog
rapid7blog
Patch Tuesday - August 2021
2021-08-11 03:19:33

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

20.3%

JSON
Related for NVD:CVE-2021-36946
prion1cvelist1mskb5mscve1cve1nessus3kaspersky1qualysblog1rapid7blog1