VYPR
Unrated severityNVD Advisory· Published Aug 6, 2024· Updated Jul 10, 2025

Microsoft Dynamics 365 Cross-site Scripting Vulnerability

CVE-2024-38166

Description

An unauthenticated attacker can exploit improper neutralization of input during web page generation in Microsoft Dynamics 365 to spoof over a network by tricking a user to click on a link.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.