Microsoft Dynamics Nav
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Microsoft Dynamics Nav.
Recent Microsoft Dynamics Nav Security Advisories
| Advisory | Title | Published |
|---|---|---|
| CVE-2022-41127 | Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability | December 13, 2022 |
By the Year
In 2026 there have been 0 vulnerabilities in Microsoft Dynamics Nav. Dynamics Nav did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 2 | 6.45 |
| 2021 | 2 | 5.75 |
| 2020 | 4 | 7.25 |
| 2019 | 0 | 0.00 |
| 2018 | 1 | 5.40 |
It may take a day or so for new Dynamics Nav vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Dynamics Nav Security Vulnerabilities
RCE in Microsoft Dynamics NAV & 365 Business Central On-prem
CVE-2022-41127
8.5 - High
- December 13, 2022
Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability
Microsoft Business Central Info Disclosure via Insecure Data Exposure
CVE-2022-41066
4.4 - Medium
- November 09, 2022
Microsoft Business Central Information Disclosure Vulnerability
Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
CVE-2021-36946
5.4 - Medium
- August 12, 2021
Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
XSS
Feb 2021: Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
CVE-2021-1724
6.1 - Medium
- February 25, 2021
Microsoft Dynamics Business Central Cross-site Scripting Vulnerability
Dec 2020: Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability
CVE-2020-17133
6.5 - Medium
- December 10, 2020
Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability
Apr 2020:
CVE-2020-1018
- April 15, 2020
An information disclosure vulnerability exists when Microsoft Dynamics Business Central/NAV on-premise does not properly hide the value of a masked field when showing the records as a chart page.The attacker who successfully exploited the vulnerability could see the information that are in a masked field.The security update addresses the vulnerability by updating the rendering engine the Windows client to properly detect masked fields and render the content as masked., aka 'Microsoft Dynamics Business Central/NAV Information Disclosure'.
Apr 2020:
CVE-2020-1022
- April 15, 2020
A remote code execution vulnerability exists in Microsoft Dynamics Business Central, aka 'Dynamics Business Central Remote Code Execution Vulnerability'.
An remote code execution vulnerability exists in Microsoft Dynamics Business Central
CVE-2020-0905
8 - High
- March 12, 2020
An remote code execution vulnerability exists in Microsoft Dynamics Business Central, aka 'Dynamics Business Central Remote Code Execution Vulnerability'.
A cross site scripting vulnerability exists when Microsoft Dynamics NAV does not properly sanitize a specially crafted web request to an affected Dynamics NAV server
CVE-2018-8651
5.4 - Medium
- December 12, 2018
A cross site scripting vulnerability exists when Microsoft Dynamics NAV does not properly sanitize a specially crafted web request to an affected Dynamics NAV server, aka "Microsoft Dynamics NAV Cross Site Scripting Vulnerability." This affects Microsoft Dynamics NAV.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Dynamics Nav or by Microsoft? Click the Watch button to subscribe.
