cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-35621,https://securityvulnerability.io/vulnerability/CVE-2023-35621,Microsoft Dynamics 365 Finance and Operations Denial of Service Vulnerability,"A Denial of Service vulnerability in Microsoft Dynamics 365 Finance and Operations can lead to service disruption, affecting the availability of applications. Attackers may exploit this vulnerability to overload the system, resulting in service downtime and impacting business operations. Timely updates and patches are essential to mitigate this risk and maintain system integrity.",Microsoft,Dynamics 365 For Finance And Operations,7.5,HIGH,0.00046999999904073775,false,,false,false,false,,,false,false,,2023-12-12T18:15:00.000Z,0
CVE-2023-36800,https://securityvulnerability.io/vulnerability/CVE-2023-36800,Dynamics Finance and Operations Cross-site Scripting Vulnerability,"A cross-site scripting (XSS) vulnerability exists in Microsoft Dynamics Finance and Operations, allowing attackers to inject malicious scripts into web pages viewed by users. Successful exploitation can enable attackers to execute arbitrary scripts in the context of the victim's browser, potentially leading to unauthorized actions or data exposure. Organizations using this product should evaluate their exposure to this vulnerability and apply the recommended updates to mitigate the risk.",Microsoft,Dynamics 365 For Finance And Operations,7.6,HIGH,0.0005200000014156103,false,,false,false,false,,,false,false,,2023-09-12T17:15:00.000Z,0
CVE-2023-24896,https://securityvulnerability.io/vulnerability/CVE-2023-24896,Dynamics 365 Finance Spoofing Vulnerability,Dynamics 365 Finance Spoofing Vulnerability,Microsoft,Dynamics 365 For Finance And Operations,5.4,MEDIUM,0.07620000094175339,false,,false,false,false,,,false,false,,2023-07-14T18:15:00.000Z,0
CVE-2021-28461,https://securityvulnerability.io/vulnerability/CVE-2021-28461,Dynamics Finance and Operations Cross-site Scripting Vulnerability,Dynamics Finance and Operations Cross-site Scripting Vulnerability,Microsoft,Dynamics 365 For Finance And Operations,6.1,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2021-05-11T19:11:15.000Z,0
CVE-2020-17158,https://securityvulnerability.io/vulnerability/CVE-2020-17158,Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability,Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability,Microsoft,Dynamics 365 For Finance And Operations,8.8,HIGH,0.027499999850988388,false,,false,false,false,,,false,false,,2020-12-10T00:15:00.000Z,0
CVE-2020-17152,https://securityvulnerability.io/vulnerability/CVE-2020-17152,Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability,Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability,Microsoft,Dynamics 365 For Finance And Operations,8.8,HIGH,0.027499999850988388,false,,false,false,false,,,false,false,,2020-12-10T00:15:00.000Z,0
CVE-2020-16857,https://securityvulnerability.io/vulnerability/CVE-2020-16857,Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability,"<p>A remote code execution vulnerability exists in Microsoft Dynamics 365 for Finance and Operations (on-premises) version 10.0.11. An attacker who successfully exploited this vulnerability could gain remote code execution via server-side script execution on the victim server.</p>
<p>An authenticated attacker with privileges to import and export data could exploit this vulnerability by sending a specially crafted file to a vulnerable Dynamics server.</p>
<p>The security update addresses the vulnerability by correcting how Microsoft Dynamics 365 for Finance and Operations (on-premises) version 10.0.11 handles user input.</p>
",Microsoft,Dynamics 365 For Finance And Operations,7.1,HIGH,0.037450000643730164,false,,false,false,false,,,false,false,,2020-09-11T17:08:41.000Z,0
CVE-2020-1182,https://securityvulnerability.io/vulnerability/CVE-2020-1182,Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability,"A remote code execution vulnerability exists in Microsoft Dynamics 365 for Finance and Operations (on-premises) version 10.0.11. An attacker who successfully exploited this vulnerability could gain remote code execution via server-side script execution on the victim server.
An authenticated attacker with privileges to import and export data could exploit this vulnerability by sending a specially crafted file to a vulnerable Dynamics server.
The security update addresses the vulnerability by correcting how Microsoft Dynamics 365 for Finance and Operations (on-premises) version 10.0.11 handles user input.
",Microsoft,Dynamics 365 For Finance And Operations,7.3,HIGH,0.04097000136971474,false,,false,false,false,,,false,false,,2020-08-17T19:15:00.000Z,0