CVE-2022-41127
Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.5EPSS 1.6%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado
Lifecycle
13 Dec 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C
Affected products
Microsoft · Dynamics 365 Business Central 2019 Release Wave 2 (On-Premise)Microsoft · Dynamics 365 Business Central Spring 2019 UpdateMicrosoft · Microsoft Dynamics 365 Business Central 2020 Release Wave 1Microsoft · Microsoft Dynamics 365 Business Central 2020 Release Wave 2Microsoft · Microsoft Dynamics 365 Business Central 2021 Release Wave 1Microsoft · Microsoft Dynamics 365 Business Central 2021 Release Wave 2Microsoft · Microsoft Dynamics 365 Business Central 2022 Release Wave 1Microsoft · Microsoft Dynamics 365 Business Central 2022 Release Wave 2Microsoft · Microsoft Dynamics NAV 2013 R2Microsoft · Microsoft Dynamics NAV 2015Microsoft · Microsoft Dynamics NAV 2016Microsoft · Microsoft Dynamics NAV 2017Microsoft · Microsoft Dynamics NAV 2018