Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability
Introduction: On 11th January 2023, Microsoft announced a vulnerability in NAV 2016, NAV 2017, and Business Central (On-Premise), and the fixes are shared below. Pre-requisites: Used / Implemented NAV 2016/2017 or Business Central On-Premise Books & References: CVE-2022-411Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability CVE - CVE-2022-41127 (mitre.org) CVE-2022-41127: Download localized DVDs for Dynamics NAV 2016 and NAV 2017 - Dynamics 365 Business Central Community What is Remote Code Execution (RCE)? - GeeksforGeeks CVE-2022-41127 - Security Update Guide - Microsoft - Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability Details: NOTE: THIS VULNERABILITY IS CRITICAL IN NATURE. 1. Vulnerability : Microsoft identified Remote Code Execution Vulnerabilities in NAV 2016, NAV2017, and Business Central On-Premise. While the fixes are released below.