Lucene search
HistoryFeb 14, 2023 - 8:15 p.m.
CVE-2023-21807
microsoft dynamics 365
xss
vulnerability
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N
6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
33.1%
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Affected configurations
Node
microsoftdynamics_365Range9.0–9.0.45.11on-premises
ORmicrosoftdynamics_365Range9.1–9.1.16.20on-premises
Related
cvelist
cvelist
cve
cve
CVE-2023-21807
2023-02-14 20:15:15
mscve
mscve
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
2023-02-14 08:00:00
prion
prion
Cross site scripting
2023-02-14 20:15:00
kaspersky
kaspersky
KLA20227 Multiple vulnerabilities in Microsoft Dynamics
2023-02-14 00:00:00
mskb
mskb
Service Update 0.45 for Microsoft Dynamics CRM (on premises) 9.0
2023-03-14 07:00:00
Service Update 1.16 for Microsoft Dynamics CRM (on-premises) 9.1
2023-03-14 07:00:00
nessus
nessus
Security Updates for Microsoft Dynamics 365 (on-premises) (February 2023)
2023-02-16 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - February 2023
2023-02-15 00:41:59
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N
6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
33.1%
Related for NVD:CVE-2023-21807