CVE-2022-41066: Microsoft Business Central Information Disclosure Vulnerability
First published: Tue Nov 08 2022(Updated: )
Microsoft Business Central Information Disclosure Vulnerability
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Dynamics 365 Business Central | =2019-spring_update | |
| Microsoft Dynamics 365 Business Central | =2022-release_wave_1 | |
| Microsoft Dynamics 365 Business Central | =2022-release_wave_2 | |
| Microsoft Dynamics NAV | =2018 | |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-41066?
CVE-2022-41066 is a Microsoft Business Central Information Disclosure Vulnerability.
How severe is CVE-2022-41066?
CVE-2022-41066 has a severity rating of 4.4 (High).
Which software is affected by CVE-2022-41066?
Microsoft Dynamics 365 Business Central 2019 Spring Update, Microsoft Dynamics 365 Business Central 2022 Release Wave 1, Microsoft Dynamics 365 Business Central 2022 Release Wave 2, and Microsoft Dynamics NAV 2018 are affected by CVE-2022-41066.
How can I fix CVE-2022-41066?
You can apply the available patches or updates provided by Microsoft to fix CVE-2022-41066. Please refer to the following links for the specific remedies: Dynamics 365 Business Central 2022 Release Wave 1 (https://www.microsoft.com/en-us/download/details.aspx?id=104696), Dynamics 365 Business Central 2021 Release Wave 2 (https://www.microsoft.com/en-us/download/details.aspx?id=104697), Dynamics NAV 2018 (https://www.microsoft.com/en-us/download/details.aspx?id=104694), Dynamics 365 Business Central 2022 Release Wave 2 (https://www.microsoft.com/en-us/download/details.aspx?id=104693), and Dynamics 365 Business Central Spring 2019 Update (https://www.microsoft.com/en-us/download/details.aspx?id=104695).
Where can I find more information about CVE-2022-41066?
You can find more information about CVE-2022-41066 on the Microsoft Security Response Center (MSRC) website: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41066.
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/title
- agent/references
- agent/last-modified-date
- agent/description
- collector/msrc-cve
- source/Microsoft
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/microsoft
- canonical/microsoft dynamics 365 business central
- version/microsoft dynamics 365 business central/2019-spring_update
- version/microsoft dynamics 365 business central/2022-release_wave_1
- version/microsoft dynamics 365 business central/2022-release_wave_2
- canonical/microsoft dynamics nav
- version/microsoft dynamics nav/2018
- canonical/microsoft dynamics 365 business central 2021 release wave 2
- canonical/microsoft dynamics 365 business central 2022 release wave 1
- canonical/microsoft dynamics 365 business central 2022 release wave 2
- canonical/microsoft dynamics 365 business central spring 2019 update
- canonical/microsoft dynamics nav 2018