CVE-2025-62211
Published: 11 November 2025
Summary
CVE-2025-62211 is a high-severity Cross-site Scripting (CWE-79) vulnerability in Microsoft Dynamics 365. Its CVSS base score is 8.7 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 16.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-15 (Information Output Filtering).
Deeper analysis
CVE-2025-62211 is a cross-site scripting (XSS) vulnerability stemming from improper neutralization of input during web page generation, classified under CWE-79. It affects Dynamics 365 Field Service (online). Published on 2025-11-11, the vulnerability carries a CVSS v3.1 base score of 8.7 (AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N), indicating high severity due to network accessibility, low attack complexity, and significant confidentiality and integrity impacts with a changed scope.
An authorized attacker with low privileges (PR:L) can exploit this vulnerability over the network (AV:N), though it requires user interaction (UI:R). Successful exploitation enables spoofing attacks, potentially leading to high confidentiality and integrity violations in a cross-context scenario.
Microsoft's security advisory, available at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62211, provides guidance on mitigation and patching for this issue.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-93399
Vulnerability details
Improper neutralization of input during web page generation ('cross-site scripting') in Dynamics 365 Field Service (online) allows an authorized attacker to perform spoofing over a network.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
XSS vulnerability in public-facing cloud web application (Dynamics 365 Field Service online) directly enables exploitation of public-facing application.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly requires validation of information inputs to neutralize untrusted data and prevent XSS exploitation from improper input handling.
Mandates filtering of information outputs during web page generation to block script injection and mitigate spoofing attacks.
Ensures timely remediation of identified flaws like this XSS vulnerability through patching, directly addressing the root cause in Dynamics 365.