1. Home
  2. Mapping Frameworks
  3. CVE Home
  4. Microsoft Dynamics 365

CVE CVE-2018-8607 Mappings

A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. This CVE ID is unique from CVE-2018-8605, CVE-2018-8606, CVE-2018-8608.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2018-8607 Microsoft Dynamics 365 primary_impact T1059 Command and Scripting Interpreter
CVE-2018-8607 Microsoft Dynamics 365 secondary_impact T1005 Data from Local System
CVE-2018-8607 Microsoft Dynamics 365 secondary_impact T1565 Data Manipulation
CVE-2018-8607 Microsoft Dynamics 365 secondary_impact T1485 Data Destruction
CVE-2018-8607 Microsoft Dynamics 365 secondary_impact T1478 Install Insecure or Malicious Configuration
CVE-2018-8607 Microsoft Dynamics 365 secondary_impact T1036 Masquerading