Lucene search
PRIOn knowledge basePRION:CVE-2020-16857HistorySep 11, 2020 - 5:15 p.m.
Remote code execution
2020-09-1117:15:00
PRIOn knowledge base
www.prio-n.com
11
<p>A remote code execution vulnerability exists in Microsoft Dynamics 365 for Finance and Operations (on-premises) version 10.0.11. An attacker who successfully exploited this vulnerability could gain remote code execution via server-side script execution on the victim server.</p>
<p>An authenticated attacker with privileges to import and export data could exploit this vulnerability by sending a specially crafted file to a vulnerable Dynamics server.</p>
<p>The security update addresses the vulnerability by correcting how Microsoft Dynamics 365 for Finance and Operations (on-premises) version 10.0.11 handles user input.</p>
| CPE | Name | Operator | Version |
|---|---|---|---|
| dynamics_365_for_finance_and_operations | eq | 10.0.11 |
Related
cve
cve
CVE-2020-16857
2020-09-11 17:15:16
mscve
mscve
nvd
nvd
CVE-2020-16857
2020-09-11 17:15:16
cvelist
cvelist
kaspersky
kaspersky
KLA11953 Multiple vulnerabilities in Microsoft Dynamics
2020-09-08 00:00:00
qualysblog
qualysblog
avleonov
avleonov