Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2024-03-12
Updated
2024-03-12
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
8.2
EPSS Score
0.11%
Published
2024-02-13
Updated
2024-02-23
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.04%
Published
2024-02-13
Updated
2024-02-23
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.04%
Published
2024-02-13
Updated
2024-02-23
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.04%
Published
2024-02-13
Updated
2024-02-22
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-09-12
Updated
2023-09-14
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-09-12
Updated
2023-09-14
Dynamics Finance and Operations Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-09-12
Updated
2023-09-14
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
6.1
EPSS Score
0.08%
Published
2023-10-10
Updated
2023-10-13
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-11-14
Updated
2023-11-20
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-11-14
Updated
2023-11-20
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-12-12
Updated
2023-12-14
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
6.2
EPSS Score
0.05%
Published
2023-11-14
Updated
2023-11-20
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
8.2
EPSS Score
0.15%
Published
2023-07-11
Updated
2023-07-14
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
8.2
EPSS Score
0.08%
Published
2023-07-11
Updated
2023-07-18
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
Max CVSS
6.1
EPSS Score
0.09%
Published
2023-06-07
Updated
2024-02-03
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
6.1
EPSS Score
0.08%
Published
2023-04-11
Updated
2023-04-19
Microsoft Dynamics 365 Customer Voice Cross-Site Scripting Vulnerability
Max CVSS
6.1
EPSS Score
0.08%
Published
2023-04-11
Updated
2023-04-19
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2023-04-11
Updated
2023-04-19
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
6.5
EPSS Score
0.06%
Published
2023-02-14
Updated
2023-05-22
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Max CVSS
6.5
EPSS Score
0.07%
Published
2023-02-14
Updated
2023-02-22
Azure DevOps Server Cross-Site Scripting Vulnerability
Max CVSS
7.1
EPSS Score
0.07%
Published
2023-02-14
Updated
2023-02-22
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
Max CVSS
7.6
EPSS Score
0.05%
Published
2022-01-11
Updated
2023-12-21
<p>A Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) vulnerability exists when Power BI Report Server Template file (pbix) containing HTML files is uploaded to the server and HTML files are accessed directly by the victim.</p> <p>Combining these 2 vulnerabilities together, an attacker is able to upload malicious Power BI templates files to the server using the victim's session and run scripts in the security context of the user and perform privilege escalation in case the victim has admin privileges when the victim access one of the HTML files present in the malicious Power BI template uploaded.</p> <p>The security update addresses the vulnerability by helping to ensure that Power BI Report Server properly sanitize file uploads.</p>
Max CVSS
9.6
EPSS Score
0.13%
Published
2021-11-10
Updated
2023-12-28
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
Max CVSS
7.4
EPSS Score
0.43%
Published
2021-10-13
Updated
2023-12-28
122 vulnerabilities found
1 2 3 4 5
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!