cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-38182,https://securityvulnerability.io/vulnerability/CVE-2024-38182,Unauthorized Access to Elevated Privileges in Microsoft Dynamics 365,"A vulnerability exists in Microsoft Dynamics 365 due to weak authentication mechanisms that permit an unauthenticated attacker to gain elevated privileges. This weakness can be exploited over a network, posing a risk to sensitive information and the overall security posture of the systems utilizing Dynamics 365. It is crucial for organizations to address this vulnerability to maintain the integrity of their business processes and protect against potential unauthorized access.",Microsoft,Dynamics 365 Field Service (on-premises) V7 Series,9.8,CRITICAL,0.0012700000079348683,false,,false,false,false,,,false,false,,2024-07-31T23:15:00.000Z,0
CVE-2020-0656,https://securityvulnerability.io/vulnerability/CVE-2020-0656,Cross Site Scripting Vulnerability in Microsoft Dynamics 365 (On-Premises),"A cross site scripting vulnerability exists in Microsoft Dynamics 365 (on-premises) that arises from improper sanitization of specially crafted web requests. This flaw could allow an attacker to execute arbitrary scripts in the context of a user's session, potentially leading to unauthorized data access or manipulation. Organizations using affected versions of Dynamics 365 should apply security updates recommended by Microsoft to mitigate the risks associated with this vulnerability.",Microsoft,Dynamics 365 Field Service (on-premises) V7 Series,5.4,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2020-01-14T23:11:41.000Z,0