CVE-2023-29422
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Dec 9, 2024
CWE ID 862
Summary
CVE-2023-29422 is a Missing Authorization vulnerability affecting Dynamics 365 Integration versions from n/a to 1.3.13. This issue arises due to incorrectly configured access control security levels, enabling unauthorized users to exploit the vulnerability. The consequence could result in unintended data modification or unauthorized data access within the AlexaCRM system. Organizations using the affected Dynamics 365 Integration versions are advised to update to a secure version or apply appropriate access control measures to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share