| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2022-41127 | Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability | Microsoft Dynamics 365 Business Central | Critical | 27-12-2022 |
Technical Information
A remote code execution vulnerability that allows authenticated attackers trigger malicious code in the context of the server’s account through a network call and execute code on the host server in the context of the service account Dynamics has been configured to use
Further information on this vulnerability is available at : CVE-2022-41127
Affected Software
Dynamics 365 Business Central 2019 Release Wave 2 (On-Premise)Dynamics 365 Business Central Spring 2019 Update
Microsoft Dynamics 365 Business Central 2020 Release Wave 1
Microsoft Dynamics 365 Business Central 2020 Release Wave 2
Microsoft Dynamics 365 Business Central 2021 Release Wave 1
Microsoft Dynamics 365 Business Central 2021 Release Wave 2
Microsoft Dynamics 365 Business Central 2022 Release Wave 1
Microsoft Dynamics 365 Business Central 2022 Release Wave 2
Microsoft Dynamics NAV 2016
Microsoft Dynamics NAV 2017
Microsoft Dynamics NAV 2018