CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-49745

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Dynamics 365 (on-premises) allows an unauthorized attacker to perform spoofing over a network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.4%

CVSS Severity

CVSS v3 Score 5.4

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49745

Products affected by CVE-2025-49745

Microsoft » Dynamics 365 » Version: 9.1

cpe:2.3:a:microsoft:dynamics_365:9.1
Microsoft » Dynamics 365 » Version: 9.1.1.914

cpe:2.3:a:microsoft:dynamics_365:9.1.1.914
Microsoft » Dynamics 365 » Version: 9.1.10.102

cpe:2.3:a:microsoft:dynamics_365:9.1.10.102
Microsoft » Dynamics 365 » Version: 9.1.11.26

cpe:2.3:a:microsoft:dynamics_365:9.1.11.26
Microsoft » Dynamics 365 » Version: 9.1.12.17

cpe:2.3:a:microsoft:dynamics_365:9.1.12.17
Microsoft » Dynamics 365 » Version: 9.1.13.12

cpe:2.3:a:microsoft:dynamics_365:9.1.13.12
Microsoft » Dynamics 365 » Version: 9.1.14.17

cpe:2.3:a:microsoft:dynamics_365:9.1.14.17
Microsoft » Dynamics 365 » Version: 9.1.16.20

cpe:2.3:a:microsoft:dynamics_365:9.1.16.20
Microsoft » Dynamics 365 » Version: 9.1.17.29

cpe:2.3:a:microsoft:dynamics_365:9.1.17.29
Microsoft » Dynamics 365 » Version: 9.1.18.22

cpe:2.3:a:microsoft:dynamics_365:9.1.18.22
Microsoft » Dynamics 365 » Version: 9.1.19.10

cpe:2.3:a:microsoft:dynamics_365:9.1.19.10
Microsoft » Dynamics 365 » Version: 9.1.2.2

cpe:2.3:a:microsoft:dynamics_365:9.1.2.2
Microsoft » Dynamics 365 » Version: 9.1.20.11

cpe:2.3:a:microsoft:dynamics_365:9.1.20.11
Microsoft » Dynamics 365 » Version: 9.1.21.05

cpe:2.3:a:microsoft:dynamics_365:9.1.21.05
Microsoft » Dynamics 365 » Version: 9.1.22.04

cpe:2.3:a:microsoft:dynamics_365:9.1.22.04
Microsoft » Dynamics 365 » Version: 9.1.23.10

cpe:2.3:a:microsoft:dynamics_365:9.1.23.10
Microsoft » Dynamics 365 » Version: 9.1.24.11

cpe:2.3:a:microsoft:dynamics_365:9.1.24.11
Microsoft » Dynamics 365 » Version: 9.1.25.21

cpe:2.3:a:microsoft:dynamics_365:9.1.25.21
Microsoft » Dynamics 365 » Version: 9.1.26

cpe:2.3:a:microsoft:dynamics_365:9.1.26
Microsoft » Dynamics 365 » Version: 9.1.26.23

cpe:2.3:a:microsoft:dynamics_365:9.1.26.23
Microsoft » Dynamics 365 » Version: 9.1.27.05

cpe:2.3:a:microsoft:dynamics_365:9.1.27.05
Microsoft » Dynamics 365 » Version: 9.1.28.09

cpe:2.3:a:microsoft:dynamics_365:9.1.28.09
Microsoft » Dynamics 365 » Version: 9.1.29.14

cpe:2.3:a:microsoft:dynamics_365:9.1.29.14
Microsoft » Dynamics 365 » Version: 9.1.3.11

cpe:2.3:a:microsoft:dynamics_365:9.1.3.11
Microsoft » Dynamics 365 » Version: 9.1.30.09

cpe:2.3:a:microsoft:dynamics_365:9.1.30.09
Microsoft » Dynamics 365 » Version: 9.1.31.10

cpe:2.3:a:microsoft:dynamics_365:9.1.31.10
Microsoft » Dynamics 365 » Version: 9.1.32

cpe:2.3:a:microsoft:dynamics_365:9.1.32
Microsoft » Dynamics 365 » Version: 9.1.32.05

cpe:2.3:a:microsoft:dynamics_365:9.1.32.05
Microsoft » Dynamics 365 » Version: 9.1.33.07

cpe:2.3:a:microsoft:dynamics_365:9.1.33.07
Microsoft » Dynamics 365 » Version: 9.1.34.07

cpe:2.3:a:microsoft:dynamics_365:9.1.34.07
Microsoft » Dynamics 365 » Version: 9.1.35.06

cpe:2.3:a:microsoft:dynamics_365:9.1.35.06
Microsoft » Dynamics 365 » Version: 9.1.36.12

cpe:2.3:a:microsoft:dynamics_365:9.1.36.12
Microsoft » Dynamics 365 » Version: 9.1.37.06

cpe:2.3:a:microsoft:dynamics_365:9.1.37.06
Microsoft » Dynamics 365 » Version: 9.1.4.31

cpe:2.3:a:microsoft:dynamics_365:9.1.4.31
Microsoft » Dynamics 365 » Version: 9.1.5.25

cpe:2.3:a:microsoft:dynamics_365:9.1.5.25
Microsoft » Dynamics 365 » Version: 9.1.6.3

cpe:2.3:a:microsoft:dynamics_365:9.1.6.3
Microsoft » Dynamics 365 » Version: 9.1.7.5

cpe:2.3:a:microsoft:dynamics_365:9.1.7.5
Microsoft » Dynamics 365 » Version: 9.1.9.8

cpe:2.3:a:microsoft:dynamics_365:9.1.9.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-49745

Products

Pricing

Contact Us