cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-38225,https://securityvulnerability.io/vulnerability/CVE-2024-38225,Elevation of Privilege Vulnerability,"An elevation of privilege vulnerability exists in Microsoft Dynamics 365 Business Central, potentially allowing an attacker to gain unauthorized access to sensitive functionalities within the application. This vulnerability can be exploited by malicious individuals to manipulate the behavior of the application and access resources that should be restricted, compromising the integrity and confidentiality of the environment. It is essential for users of Dynamics 365 Business Central to apply the necessary patches released by Microsoft to mitigate the risk associated with this vulnerability. For more detailed information, refer to the Microsoft advisory.",Microsoft,"Microsoft Dynamics 365 Business Central 2023 Release Wave 1,Microsoft Dynamics 365 Business Central 2024 Release Wave 1,Microsoft Dynamics 365 Business Central 2023 Release Wave 2",9.8,CRITICAL,0.0014199999859556556,false,false,false,false,,false,false,2024-09-10T16:53:56.595Z,0
CVE-2024-35249,https://securityvulnerability.io/vulnerability/CVE-2024-35249,Remote Code Execution Vulnerability Affects Microsoft Dynamics 365 Business Central,"The vulnerability in Microsoft Dynamics 365 Business Central enables remote code execution, allowing attackers to potentially execute arbitrary code on the server hosting the application. This risk arises due to improper validation of user input, which may be exploited to gain control over affected installations. Organizations utilizing Microsoft Dynamics 365 Business Central should assess their systems and apply necessary updates to mitigate this vulnerability. For detailed information and mitigation strategies, refer to the Microsoft security advisory.",Microsoft,"Microsoft Dynamics 365 Business Central 2024 Release Wave 1,Microsoft Dynamics 365 Business Central 2023 Release Wave 1,Microsoft Dynamics 365 Business Central 2023 Release Wave 2",8.8,HIGH,0.0004799999878741801,false,false,false,false,,false,false,2024-06-11T17:00:06.410Z,0
CVE-2024-35248,https://securityvulnerability.io/vulnerability/CVE-2024-35248,Elevation of Privilege Vulnerability Affects Business Central,"The vulnerability within Microsoft Dynamics 365 Business Central pertains to an elevation of privilege, which may allow attackers to gain unauthorized access to sensitive functionalities of the application. This situation arises from improper validation of user permissions, enabling exploiters to perform actions that they are otherwise not authorized to carry out. It is essential for users and administrators to assess their deployments and take necessary mitigation steps to safeguard their environments from potential exploitation.",Microsoft,"Microsoft Dynamics 365 Business Central 2023 Release Wave 1,Microsoft Dynamics 365 Business Central 2023 Release Wave 2,Microsoft Dynamics 365 Business Central 2024 Release Wave 1",7.3,HIGH,0.0004799999878741801,false,false,false,false,,false,false,2024-06-11T17:00:05.663Z,0
CVE-2024-21380,https://securityvulnerability.io/vulnerability/CVE-2024-21380,Information Disclosure Vulnerability,"An information disclosure vulnerability exists in Microsoft Dynamics Business Central and NAV, which can potentially expose sensitive data to unauthorized users. This vulnerability stems from improper handling of user requests, allowing an attacker to gain access to confidential information. Organizations utilizing these platforms should take immediate action to assess their system configurations and apply relevant security updates to mitigate the risks associated with this vulnerability.",Microsoft,"Microsoft Dynamics 365 Business Central 2022 Release Wave 2,Microsoft Dynamics 365 Business Central 2023 Release Wave 1,Microsoft Dynamics 365 Business Central 2023 Release Wave 2",8,HIGH,0.0035099999513477087,false,false,false,false,,false,false,2024-02-13T18:02:43.563Z,0
CVE-2023-38167,https://securityvulnerability.io/vulnerability/CVE-2023-38167,Microsoft Dynamics Business Central Elevation Of Privilege Vulnerability,Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability,Microsoft,Microsoft Dynamics 365 Business Central 2023 Release Wave 1,7.2,HIGH,0.00046999999904073775,false,false,false,false,,false,false,2023-08-08T18:15:00.000Z,0