Microsoft Dynamics 365 Business Central — known CVE vulnerabilities
Every CVE whose affected-product data names Microsoft Dynamics 365 Business Central, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2022-41127 — CVSS 8.5 (high): Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution Vulnerability
CVE-2024-43460 — CVSS 8.1 (high): Improper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate…
CVE-2020-0905 — CVSS 8.0 (high): An remote code execution vulnerability exists in Microsoft Dynamics Business Central, aka 'Dynamics Business Central Remote Code Execution…
CVE-2020-1022 — CVSS 8.0 (high): A remote code execution vulnerability exists in Microsoft Dynamics Business Central, aka 'Dynamics Business Central Remote Code Execution…
CVE-2026-40417 — CVSS 7.8 (high): Weak authentication in Dynamics Business Central allows an authorized attacker to elevate privileges locally.
CVE-2020-1018 — CVSS 7.5 (high): An information disclosure vulnerability exists when Microsoft Dynamics Business Central/NAV on-premise does not properly hide the value of…