3 matches found
CVE-2017-11936
CVE-2017-11936 affects Microsoft SharePoint Server 2016. An authenticated attacker can exploit improper sanitization of crafted web requests to escalate privileges, potentially causing cross-site scripting and actions on behalf of the user (read/change permissions, inject content). Remediation is...
Security Update for Microsoft SharePoint Server 2016 (December 2017)
The Microsoft SharePoint Server or Microsoft Project Server installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a...
Microsoft SharePoint CVE-2017-11936 Privilege Escalation Vulnerability
Description Microsoft SharePoint is prone to a privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft SharePoint Enterprise Server 2016 Recommendations Run all software as a nonprivileged user with minimal access rights...