According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities :
A remote code execution vulnerability exists in Microsoft SharePoint software when the software fails to properly handle objects in memory.
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.
An elevation of privilege vulnerability exists in Microsoft SharePoint.
Note that the scanner has not tested for these issues but has instead relied only on the applicationβs self-reported version number.
No source data
Vendor | Product | Version |
---|---|---|
a | microsoft | sharepoint_server |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1070
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1328
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1329
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1330
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1331
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1070
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1328
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1329
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1330
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1331