Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sharepoint server vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-0947
Microsoft SharePoint Foundation 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is u...
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Enterprise Server 2013
1 Article
8.8
CVSSv3
CVE-2018-0790
Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of privilege vulnerability due to the way web requests are handled, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE i...
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Enterprise Server 2013
8.8
CVSSv3
CVE-2018-0792
Microsoft Word 2016 in Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is unique from CVE-2018-0794.
Microsoft Office 2016
Microsoft Sharepoint Server 2016
Microsoft Word 2016
Microsoft Office Online Server 2016
1 Github repository
8.8
CVSSv3
CVE-2018-0789
Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of privilege vulnerability due to the way web requests are handled, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE i...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Enterprise Server 2013
Microsoft Sharepoint Enterprise Server 2016
8.8
CVSSv3
CVE-2017-11936
Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability due to the way web requests are handled, aka "Microsoft SharePoint Elevation of Privilege Vulnerability".
Microsoft Sharepoint Enterprise Server 2016
1 Article
8.8
CVSSv3
CVE-2017-11876
Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an malicious user to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to take actions on the web application on behalf of the victim, such as ...
Microsoft Project Server 2013
Microsoft Sharepoint Enterprise Server 2016
8.8
CVSSv3
CVE-2017-8569
Microsoft SharePoint Server allows an elevation of privilege vulnerability due to the way that it sanitizes a specially crafted web request to an affected SharePoint server, aka "SharePoint Server XSS Vulnerability".
Microsoft Sharepoint Server 2016
8.8
CVSSv3
CVE-2017-8512
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8509, CVE-2017-8510, CVE-2017-8511, CVE-2017-0260, and CV...
Microsoft Office Web Apps 2010
Microsoft Sharepoint Enterprise Server 2013
Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2016
Microsoft Sharepoint Enterprise Server 2016
Microsoft Office Online Server 2016
Microsoft Office Web Apps Server 2013
Microsoft Word Automation Services -
8.8
CVSSv3
CVE-2017-8509
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8510, CVE-2017-8511, CVE-2017-8512, CVE-2017-0260, and CV...
Microsoft Office Web Apps 2010
Microsoft Office Web Apps Server 2013
Microsoft Office 2016
Microsoft Onenote 2010
Microsoft Office 2007
Microsoft Office 2010
Microsoft Sharepoint Server 2013
Microsoft Word 2010
Microsoft Word 2016
Microsoft Word For Mac 2016
Microsoft Word 2013
Microsoft Sharepoint Server 2010
Microsoft Office 2013
Microsoft Office Compatibility Pack -
Microsoft Sharepoint Server 2016
Microsoft Word 2007
8.8
CVSSv3
CVE-2016-0183
The Windows font library in Microsoft Office 2010 SP2, Word 2010 SP2, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allows remote malicious users to execute arbitrary code via a crafted embedded font, aka "Microsoft Office Graphics RCE ...
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
Microsoft Word 2010
Microsoft Office 2010
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »