Skip to main content

Dynamics 365 CVE-2022-35805

HIGH
2022-09-13 secure@microsoft.com
8.8
CVSS 3.1 · Vendor: microsoft
Share

Severity by source

Vendor (microsoft) PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from Vendor (microsoft) · only source for this CVE.

CVSS VectorVendor: microsoft

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Sep 13, 2022 - 19:15 cve.org
HIGH 8.8

DescriptionCVE.org

Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability

AnalysisAI

Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Technical ContextAI

Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability Affected products include: Microsoft Dynamics 365.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2024-38182 CRITICAL
9.8 Jul 31

Weak authentication in Microsoft Dynamics 365 allows an unauthenticated attacker to elevate privileges over a network. R

CVE-2022-34700 HIGH
8.8 Sep 13

Microsoft Dynamics CRM (on-premises) Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2022-23259 HIGH
8.8 Apr 15

Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabili

CVE-2021-42316 HIGH
8.8 Nov 10

Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabili

CVE-2020-17158 HIGH
8.8 Dec 10

Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability. Rated high severity

CVE-2020-17152 HIGH
8.8 Dec 10

Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability. Rated high severity

CVE-2019-1229 HIGH
8.8 Aug 14

An elevation of privilege vulnerability exists in Dynamics On-Premise v9. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2018-8609 HIGH
8.8 Nov 14

A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) version 8 when the server fails to

CVE-2020-17147 HIGH
8.7 Dec 10

Dynamics CRM Webclient Cross-site Scripting Vulnerability. Rated high severity (CVSS 8.7), this vulnerability is remotel

CVE-2024-38211 HIGH
8.2 Aug 13

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability. Rated high severity (CVSS 8.2), this vulnerabil

CVE-2024-21395 HIGH
8.2 Feb 13

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability. Rated high severity (CVSS 8.2), this vulnerabil

CVE-2023-35335 HIGH
8.2 Jul 11

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability. Rated high severity (CVSS 8.2), this vulnerabil

Share

CVE-2022-35805 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy