Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
office sharepoint server vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2015-6037
Cross-site scripting (XSS) vulnerability in Microsoft Excel Services on SharePoint Server 2010 SP2 and 2013 SP1, Office Web Apps 2010 SP2, Excel Web App 2010 SP2, Office Web Apps Server 2013 SP1, and SharePoint Foundation 2013 SP1 allows remote authenticated users to inject arbit...
Microsoft Excel Web App 2010
Microsoft Office Web Apps 2013
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Server 2013
Microsoft Office Web Apps 2010
Microsoft Sharepoint Server 2010
828
VMScore
CVE-2013-1315
Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013; Office Web Apps 2010; Excel 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; and Office Compatibility Pack SP3 allow remote malicious users to execute arbitrary code or ca...
Microsoft Excel Viewer
Microsoft Excel 2013
Microsoft Office Compatibility Pack
Microsoft Excel 2003
Microsoft Office 2011
Microsoft Sharepoint Foundation 2010
Microsoft Excel 2010
Microsoft Excel 2007
Microsoft Sharepoint Services 3.0
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Services 2.0
Microsoft Sharepoint Portal Server 2003
Microsoft Office Web Apps 2010
828
VMScore
CVE-2017-8509
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8510, CVE-2017-8511, CVE-2017-8512, CVE-2017-0260, and CV...
Microsoft Office Web Apps 2010
Microsoft Office Web Apps Server 2013
Microsoft Office 2016
Microsoft Onenote 2010
Microsoft Office 2007
Microsoft Office 2010
Microsoft Sharepoint Server 2013
Microsoft Word 2010
Microsoft Word 2016
Microsoft Word For Mac 2016
Microsoft Word 2013
Microsoft Sharepoint Server 2010
Microsoft Office 2013
Microsoft Office Compatibility Pack -
Microsoft Sharepoint Server 2016
Microsoft Word 2007
828
VMScore
CVE-2019-1035
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1034.
Microsoft Office Online Server -
Microsoft Office 2016
Microsoft Office 365 Proplus -
Microsoft Office 2019
Microsoft Sharepoint Server 2019
2 Articles
828
VMScore
CVE-2019-1205
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1201.
Microsoft Office 2016
Microsoft Office 2019
Microsoft Sharepoint Server 2019
Microsoft Office 365 Proplus -
Microsoft Office Online Server -
1 Github repository
1 Article
828
VMScore
CVE-2017-8511
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8509, CVE-2017-8510, CVE-2017-8512, CVE-2017-0260, and CV...
Microsoft Office 2013
Microsoft Office Web Apps Server 2013
Microsoft Office Web Apps 2010
Microsoft Powerpoint For Mac 2011
Microsoft Office Online Server 2016
Microsoft Office 2010
Microsoft Powerpoint For Mac 2016
Microsoft Sharepoint Server 2016
Microsoft Sharepoint Server 2013
Microsoft Office 2016
828
VMScore
CVE-2020-1495
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logg...
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Sharepoint Server 2010
Microsoft Office 2010
Microsoft Office 2013
Microsoft Excel 2010
Microsoft Office Online Server -
Microsoft Office 2016
Microsoft Sharepoint Enterprise Server 2013
Microsoft Office 2019
Microsoft 365 Apps -
1 Article
383
VMScore
CVE-2014-1754
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2013 Gold and SP1, SharePoint Foundation 2013 Gold and SP1, Office Web Apps Server 2013 Gold and SP1, and SharePoint Server 2013 Client Components SDK allows remote malicious users to inject arbitrary web scr...
Microsoft Sharepoint Foundation 2013
Microsoft Sharepoint Server Client Components Sdk 2013
Microsoft Office Web Apps Server 2013
Microsoft Sharepoint Server 2013
605
VMScore
CVE-2020-1338
<p>A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the curre...
Microsoft Office Online Server -
Microsoft Sharepoint Server 2019
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2016
1 Article
890
VMScore
CVE-2013-1330
The default configuration of Microsoft SharePoint Portal Server 2003 SP3, SharePoint Server 2007 SP3 and 2010 SP1 and SP2, and Office Web Apps 2010 does not set the EnableViewStateMac attribute, which allows remote malicious users to execute arbitrary code by leveraging an unassi...
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Foundation 2010
Microsoft Sharepoint Services 2.0
Microsoft Sharepoint Portal Server 2003
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
Microsoft Office Web Apps 2010
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »