Skip to main content

Posts

Showing posts with the label CVE-2022-41127

Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability

Introduction:  On 11th January 2023, Microsoft announced a vulnerability in NAV 2016, NAV 2017, and Business Central (On-Premise), and the fixes are shared below. Pre-requisites:  Used / Implemented NAV 2016/2017 or Business Central On-Premise Books & References:  CVE-2022-411Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability CVE - CVE-2022-41127 (mitre.org) CVE-2022-41127: Download localized DVDs for Dynamics NAV 2016 and NAV 2017 - Dynamics 365 Business Central Community What is Remote Code Execution (RCE)? - GeeksforGeeks CVE-2022-41127 - Security Update Guide - Microsoft - Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability Details:  NOTE:   THIS VULNERABILITY IS CRITICAL IN NATURE. 1. Vulnerability : Microsoft identified Remote Code Execution Vulnerabilities in NAV 2016, NAV2017, and Business Central On-Premis...