Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability
CVE-2022-41127

8.5HIGH

Key Information:

Vendor: Microsoft
Status: Microsoft Dynamics Nav 2016; Microsoft Dynamics Nav 2017; Microsoft Dynamics Nav 2018; Microsoft Dynamics Nav 2015
Vendor: CVE Published:; 13 December 2022

What is CVE-2022-41127?

Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability

Dynamics 365 Business Central 2019 Release Wave 2 (On-Premise) Unknown 15.0.0

Dynamics 365 Business Central Spring 2019 Update Unknown 14.0.0

Microsoft Dynamics 365 Business Central 2020 Release Wave 1 Unknown 16.0.0

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet