Microsoft Microsoft Dynamics 365 (On-premises) Version 9.1
47 CVEs affecting Microsoft Microsoft Dynamics 365 (On-premises) Version 9.1. Latest disclosed: 2026-05-12. Critical: 2, High: 22.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-42898 | Critical | 9.9 | 2026-05-12 | Improper control of generation of code ('code injection') in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to execute code over a network. |
CVE-2026-42833 | Critical | 9.1 | 2026-05-12 | Improper control of generation of code ('code injection') in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to execute code over a network. |
CVE-2022-23259 | High | 8.8 | 2022-04-15 | Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability |
CVE-2021-42316 | High | 8.8 | 2021-11-10 | Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability |
CVE-2024-38211 | High | 8.2 | 2024-08-13 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2024-21395 | High | 8.2 | 2024-02-13 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2023-35335 | High | 8.2 | 2023-07-11 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2023-33171 | High | 8.2 | 2023-07-11 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2021-34524 | High | 8.1 | 2021-08-12 | Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability |
CVE-2024-43476 | High | 7.6 | 2024-09-10 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2024-21419 | High | 7.6 | 2024-03-12 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2024-21328 | High | 7.6 | 2024-02-13 | Dynamics 365 Sales Spoofing Vulnerability |
CVE-2024-21396 | High | 7.6 | 2024-02-13 | Dynamics 365 Sales Spoofing Vulnerability |
CVE-2024-21394 | High | 7.6 | 2024-02-13 | Dynamics 365 Field Service Spoofing Vulnerability |
CVE-2024-21393 | High | 7.6 | 2024-02-13 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2024-21389 | High | 7.6 | 2024-02-13 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2023-36020 | High | 7.6 | 2023-12-12 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2023-36031 | High | 7.6 | 2023-11-14 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2023-36410 | High | 7.6 | 2023-11-14 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |
CVE-2023-38164 | High | 7.6 | 2023-09-12 | Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability |