PT-2021-7043 · Microsoft · Dynamics Nav+1
Rskvp93
·
Published
2021-09-14
·
Updated
2023-12-28
·
CVE-2021-40440
CVSS v2.0
5.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Microsoft Dynamics Business Central (affected versions not specified)
Microsoft Dynamics NAV (affected versions not specified)
Description
The issue is related to a cross-site scripting vulnerability in Microsoft Dynamics Business Central and Microsoft Dynamics NAV. This vulnerability is due to inadequate protection of the web page structure. An attacker could exploit this vulnerability to perform a cross-site scripting attack remotely.
Recommendations
For Microsoft Dynamics Business Central, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
For Microsoft Dynamics NAV, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Spoofing
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dynamics Business Central
Dynamics Nav