Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

msrc логотип

CVE-2024-43460

Опубликовано: 17 сент. 2024
Источник: msrc
CVSS3: 8.1
EPSS Низкий

Описание

Dynamics 365 Business Central Elevation of Privilege Vulnerability

Improper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate privileges over a network.

FAQ

Why are there no links to an update or instructions with steps that must be taken to protect from this vulnerability?

This vulnerability has already been fully mitigated by Microsoft. There is no action for users of this service to take. The purpose of this CVE is to provide further transparency.

Please see Toward greater transparency: Unveiling Cloud Service CVEs for more information.

Возможность эксплуатации

Publicly Disclosed

No

Exploited

No

Latest Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 85%
0.02538
Низкий

8.1 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2024-43460

CVSS3: 8.1
nvd
больше 1 года назад

Improper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate privileges over a network.

github логотип

GHSA-r6hg-m6fm-hgwr

CVSS3: 8.1
github
больше 1 года назад

Improper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate privileges over a network.

fstec логотип

BDU:2024-11663

CVSS3: 8.1
fstec
больше 1 года назад

Уязвимость программного средства для управления малым и средним бизнесом Microsoft Dynamics 365 Business Central, связанная с недостатками процедуры авторизации, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 85%
0.02538
Низкий

8.1 High

CVSS3