CVE-2025-62211

Name of the Vulnerable Software and Affected Versions Microsoft Dynamics 365 Field Service (online) (affected versions not specified)

Description The issue involves improper neutralization of input during web page generation, leading to a cross-site scripting condition. An authorized attacker can perform spoofing over a network by exploiting this. The core of the issue is that user inputs are not sufficiently sanitized or encoded when rendered, allowing an attacker to inject malicious scripts into webpages viewed by legitimate users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.