web
You’re offline. This is a read only version of the page.
close
Skip to main content
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics 365 | Integration, Dataverse... / Vulnerability Scan res...
Microsoft Dynamics 365 | Integration, Dataverse...
Suggested answer

Vulnerability Scan results on Dynamics 365 instance with Power Apps Portal

(0) ShareShare
ReportReport
Posted on by Neil Kay 5

ANy thoughts on why a fresh (month ago) setup of Dynamics 365 and Power Apps portal looks to the outside world like an unpatched instance of SQL server 2014 (someone has suggested SQL Express 2014)?

A pre-flight vulnerability scan using OpenVAS, shows ports 1433 and 5558 open to the outside world

Any thoughts appreciated.

Thanks

ovas.png

I have the same question (0)
  • Suggested answer
    PerezAguiar Profile Picture
    PerezAguiar Microsoft Employee on at
    RE: Vulnerability Scan results on Dynamics 365 instance with Power Apps Portal

    Hey Neil.

    As security is a very complicated topic, the best advise would be to open a Support Request with Microsoft.

    It would be interesting to know how the tool differentiates if it's SQL Server, SQL Express,or Azure SQL:  is the tool checking the compatibility level or using some other type of request?  According to Back up and restore environments - Power Platform | Microsoft Docs, Dynamics 365 CRM Runs on Azure SQL Database, but from the screenshot, this option is not being considered/reported.

    Regards,

  • Suggested answer
    Neil Kay Profile Picture
    Neil Kay 5 on at
    RE: Vulnerability Scan results on Dynamics 365 instance with Power Apps Portal

    Hi All, thanks for the comments.

    It seems that this is the "Dataverse endpoint SQL connection", as per:

    docs.microsoft.com/.../dataverse-sql-query

    The overall config is as designed in the circumstances and it's just a diversion (and false positive) that Nessus sees the footprint on the port as an unpatched instance of SQL server 2014.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Join experts in person to explore low code and AI agents at the Power Platform Community Conference sponsored by Microsoft

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Abhilash Warrier – Community Spotlight

We are honored to recognize Abhilash Warrier as our Community Spotlight honoree for…

Congratulations to the September Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Microsoft Dynamics 365 | Integration, Dataverse, and general topics

#1
Sahan Hasitha Profile Picture

Sahan Hasitha 169

#2
CA Neeraj Kumar Profile Picture

CA Neeraj Kumar 65

#3
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 63 Super User 2025 Season 2

Last 30 days Overall leaderboard

Featured topics

Identifying an Org as CDS or Dynamics
Get batch job history log from D365 FO to Power Automate
Gross and Net Weight of Shipments feeding back into Sales Order (from External Source)

Product updates

Dynamics 365 release plans