CVE-2020-1063

Summary

A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability'.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Dynamics 365 (on-premises)8.2affected
MicrosoftMicrosoft Dynamics 365 (on-premises)9.0affected

Weaknesses

  • Spoofing

ADP Enrichment

CVE Program Container

Additional References

References