Microsoft Dynamics NAV/BC Info Disclosure Vulnerability (CVE-2024-21380)
CVE-2024-21380 Published on February 13, 2024
Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability
Microsoft Dynamics Business Central/NAV Information Disclosure Vulnerability
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2024-21380 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2024-21380
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2024-21380 are published in Microsoft Dynamics 365 Business Central:
Affected Versions
Microsoft Dynamics 365 Business Central 2022 Release Wave 2:- Version 21.0.0 and below Application Build 21.16.63199, Platform Build 21.0 is affected.
- Version 22.0.0 and below Application Build 22.10.63195, Platform Build 22.0 is affected.
- Version 23.0.0 and below Application Build 23.4.15715, Platform Build 23.0. is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.