Elevation of Privilege Vulnerability in Dynamics OmniChannel SDK by Microsoft
CVE-2025-64655

8.8HIGH

Key Information:

Vendor: Microsoft
Status: Dynamics Omnichannel Sdk Storage Containers
Vendor: CVE Published:; 20 November 2025

What is CVE-2025-64655?

An authorization flaw in Dynamics OmniChannel SDK Storage Containers permits unauthorized attackers to gain elevated privileges, potentially compromising the security of the network. This vulnerability may allow an attacker to manipulate resources and access sensitive data without proper permission, increasing the risk of unauthorized actions within the system.

Affected Version(s)

Dynamics OmniChannel SDK Storage Containers Unknown

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 20, 2025
Vulnerability Reserved
Nov 6, 2025

JSON