Cross-site Scripting Vulnerability in Microsoft Dynamics 365 (on-premises)
CVE-2024-43476
7.6HIGH
Key Information
- Vendor
- Microsoft
- Status
- Microsoft Dynamics 365 (on-premises) Version 9.1
- Vendor
- CVE Published:
- 10 September 2024
Summary
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Affected Version(s)
Microsoft Dynamics 365 (on-premises) version 9.1 < 9.1.32
CVSS V3.1
Score:
7.6
Severity:
HIGH
Confidentiality:
High
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed
Timeline
Risk change from: 5.4 to: 7.6 - (HIGH)
Risk change from: 5.4 to: 7.6 - (HIGH)
Risk change from: 5.4 to: 7.6 - (HIGH)
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre DatabaseMicrosoft Feed