Description of the security update for Microsoft Dynamics NAV 2015: April 14, 2020

Applies to: Microsoft Dynamics NAV 2015

An information disclosure vulnerability exists if Microsoft Dynamics Business Central/NAV on-premises does not correctly hide the value of a masked field when it displays the records as a chart page. To learn more about the vulnerability, go to CVE-2020-1018.

This update also addresses a vulnerability that is related to the NAVRecordState state. To learn more about the vulnerability, go to CVE-2020-1022.

How to obtain and install the update

Microsoft Download Center

The following file is available for download from the Microsoft Download Center:

Download Download the package now

More information


To apply this security update, you must have Microsoft Dynamics NAV 2015 installed.

Restart requirement

You may have to restart the computer after you apply this security update.

Security update replacement information

This security update doesn't replace other security updates.

Deployment information

For deployment details for this security update, go to the following article in the Microsoft Knowledge Base:

Security update deployment information: April 14, 2020

Information about protection and security

Protect yourself online: Windows Security support

Learn how we guard against cyber threats: Microsoft Security