This article applies to Microsoft Dynamics NAV 2017 for all countries and all language locales.
A remote code execution vulnerability exists in Microsoft Dynamics NAV. A user who has the permission to access certain features that requires a call from the Role-Tailored Client that has the dataset structure can start arbitrary shell commands through deserialization.
To learn more about the vulnerability, go to CVE-2020-0905.