Security Vulnerabilities - CVEs Published In November 2023
Microsoft Dynamics 365 Sales Spoofing Vulnerability
CVSS Score
6.1
EPSS Score
0.002
Published
2023-11-14
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
CVSS Score
7.6
EPSS Score
0.002
Published
2023-11-14
CVE-2023-36033
Windows DWM Core Library Elevation of Privilege Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.002
Published
2023-11-14
Microsoft Exchange Server Spoofing Vulnerability
CVSS Score
8.0
EPSS Score
0.201
Published
2023-11-14
Windows Scripting Engine Memory Corruption Vulnerability
CVSS Score
8.8
EPSS Score
0.027
Published
2023-11-14
Visual Studio Code Jupyter Extension Spoofing Vulnerability
CVSS Score
7.8
EPSS Score
0.016
Published
2023-11-14
Microsoft On-Prem Data Gateway Security Feature Bypass Vulnerability
CVSS Score
8.0
EPSS Score
0.002
Published
2023-11-14
CVE-2023-36025
Windows SmartScreen Security Feature Bypass Vulnerability
Known exploited
CVSS Score
8.8
EPSS Score
0.904
Published
2023-11-14
A use of hard-coded credentials vulnerability in Fortinet FortiClient Windows 7.0.0 - 7.0.9 and 7.2.0 - 7.2.1 allows an attacker to bypass system protections via the use of static credentials.
CVSS Score
4.4
EPSS Score
0.0
Published
2023-11-14
A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 and 8.4.0 through 8.4.2 and 8.3.0 through 8.3.2 and 8.2.2 allows attacker to execute unauthorized code or commands via a crafted http request.
CVSS Score
9.8
EPSS Score
0.08
Published
2023-11-14