CVE-2025-21177: CWE-918: Server-Side Request Forgery (SSRF) in Microsoft Dynamics 365 Sales
Server-Side Request Forgery (SSRF) in Microsoft Dynamics 365 Sales allows an authorized attacker to elevate privileges over a network.
CVE-2025-21177: CWE-918: Server-Side Request Forgery (SSRF) in Microsoft Dynamics 365 Sales
Description
Server-Side Request Forgery (SSRF) in Microsoft Dynamics 365 Sales allows an authorized attacker to elevate privileges over a network.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- microsoft
- Date Reserved
- 2024-12-05T21:43:30.761Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 69432efa058703ef3fc97f42
Added to database: 12/17/2025, 10:30:18 PM
Last updated: 12/17/2025, 10:36:54 PM
Views: 1
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2025-24042: CWE-284: Improper Access Control in Microsoft Visual Studio Code - JS Debug Extension
HighCVE-2025-24039: CWE-427: Uncontrolled Search Path Element in Microsoft Visual Studio Code
HighCVE-2025-24036: CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition in Microsoft Microsoft AutoUpdate for Mac
HighCVE-2025-21420: CWE-59: Improper Link Resolution Before File Access ('Link Following') in Microsoft Windows Server 2022
HighCVE-2025-21419: CWE-59: Improper Link Resolution Before File Access ('Link Following') in Microsoft Windows 10 Version 1809
HighActions
External Links
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.