CVE-2023-24922
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
Summary
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Microsoft | Microsoft Dynamics 365 (on-premises) version 9.0 | 9.0.0 < 9.0.45.11 | affected |
| Microsoft | Microsoft Dynamics 365 (on-premises) version 9.1 | 9.0 < 9.1.16.20 | affected |
Weaknesses
- CWE-643: CWE-643: Improper Neutralization of Data within XPath Expressions ('XPath Injection')
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.