Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
CVE-2021-40440

5.4MEDIUM

Key Information:

Vendor: Microsoft
Status: Microsoft Dynamics 365 Business Central 2020 Release Wave 2 – Update 17.10; Microsoft Dynamics 365 Business Central 2021 Release Wave 1 - Update 18.5
Vendor: CVE Published:; 15 September 2021

What is CVE-2021-40440?

Microsoft Dynamics Business Central Cross-site Scripting Vulnerability

Microsoft Dynamics 365 Business Central 2020 Release Wave 2 – Update 17.10 Unknown 17.0.0.0

Microsoft Dynamics 365 Business Central 2021 Release Wave 1 - Update 18.5 Unknown 18.0.0.0

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet