CVE-2021-36946

State: PUBLISHED · Published: 2021-08-12 · Updated: 2024-08-04 · Assigner: microsoft

Description

Microsoft Dynamics Business Central Cross-site Scripting Vulnerability

CWE

Affected

Microsoft / Microsoft Dynamics NAV 2017 — v=1.0 <30601 [affected]
Microsoft / Microsoft Dynamics NAV 2018 — v=1.0 <47562 [affected]
Microsoft / Dynamics 365 Business Central Spring 2019 Update — v=14.0.0 <Application Build 14.27.47563, Platform Build 14.0 [affected]
Microsoft / Microsoft Dynamics 365 Business Central 2020 Release Wave 2 - Update 17.9 — v=17.0 <Application Build 17.9.28504, Platform Build 17.0. [affected]
Microsoft / Microsoft Dynamics 365 Business Central 2020 Release Wave 1 - Update 16.15 — v=16.0 <Application Build 16.15.28500, Platform Build 16.0 [affected]

CVSS

3.1 score=5.4 severity=MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N/E:P/RL:O/RC:C

References

Source

cvelistV5-main/cves/2021/36xxx/CVE-2021-36946.json