Sharepoint Enterprise Server@2013 Security Vulnerabilities and Issues — Sharepoint Enterprise Server@2013 CVE List

Lucene search

MicrosoftSharepoint Enterprise Server2013

23 matches found

CVE•added 2018/04/12 1:29 a.m.•376 views

CVE-2018-1028

A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts, aka "Microsoft Office Graphics Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft SharePoint, Excel, Microsoft SharePoint Server.

9.3CVSS8.3AI score0.29608EPSS

CVE•added 2018/01/10 1:29 a.m.•167 views

CVE-2018-0797

Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allow a remote code execution vulnerability due to the way RTF content is handled, aka "Microsoft Word Memory Corruption Vulnerability".

9.3CVSS8.2AI score0.44732EPSS

CVE•added 2018/01/10 1:29 a.m.•101 views

CVE-2018-0789

Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of privilege vulnerability due to the way web requests are handled, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0790.

9CVSS8.5AI score0.14659EPSS

CVE•added 2018/07/11 12:29 a.m.•93 views

CVE-2018-8284

A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka ".NET Framework Remote Code Injection Vulnerability." This affects Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.0, Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2, Microso...

9.3CVSS7.3AI score0.53408EPSS

CVE•added 2018/01/10 1:29 a.m.•76 views

CVE-2018-0790

8.8CVSS8.5AI score0.14659EPSS

CVE•added 2018/01/10 1:29 a.m.•75 views

CVE-2018-0799

Microsoft Access in Microsoft SharePoint Enterprise Server 2013 and Microsoft SharePoint Enterprise Server 2016 allows a cross-site-scripting (XSS) vulnerability due to the way image field values are handled, aka "Microsoft Access Tampering Vulnerability".

6.1CVSS6.7AI score0.0081EPSS

CVE•added 2018/10/10 1:29 p.m.•75 views

CVE-2018-8518

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoint. This CVE ID is unique from...

5.4CVSS5.6AI score0.00272EPSS

CVE•added 2018/09/13 12:29 a.m.•74 views

CVE-2018-8431

5.4CVSS5.6AI score0.00427EPSS

CVE•added 2018/03/14 5:29 p.m.•72 views

CVE-2018-0919

Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps 2013 SP1, Microsoft SharePoint Enterprise Server 2013 SP1, Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint...

4.3CVSS4.9AI score0.06725EPSS

CVE•added 2018/04/12 1:29 a.m.•72 views

CVE-2018-1005

5.4CVSS5.5AI score0.00536EPSS

CVE•added 2018/03/14 5:29 p.m.•71 views

CVE-2018-0923

Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE-2018-0910. CVE-2018-0911, CVE-2018-0912, CV...

8.8CVSS8.4AI score0.07376EPSS

CVE•added 2018/07/11 12:29 a.m.•69 views

CVE-2018-8299

5.4CVSS5.6AI score0.00432EPSS

CVE•added 2018/03/14 5:29 p.m.•68 views

CVE-2018-0922

Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office Compatibility Pack SP2, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps 2013 SP1, Microsoft Office Word Viewer, Microsoft SharePoint Enterprise Server 2013...

9.3CVSS7.8AI score0.19242EPSS

CVE•added 2018/12/12 12:29 a.m.•68 views

CVE-2018-8635

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted authentication request to an affected SharePoint server, aka "Microsoft SharePoint Server Elevation of Privilege Vulnerability." This affects Microsoft SharePoint Server, M...

8.8CVSS4.9AI score0.12974EPSS

CVE•added 2018/03/14 5:29 p.m.•67 views

CVE-2018-0947

Microsoft SharePoint Foundation 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE...

8.8CVSS8.5AI score0.07376EPSS

CVE•added 2018/11/14 1:29 a.m.•67 views

CVE-2018-8578

An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when rendering specific web pages, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microsoft SharePoint.

4.3CVSS5.3AI score0.02533EPSS

CVE•added 2018/07/11 12:29 a.m.•63 views

CVE-2018-8300

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka "Microsoft SharePoint Remote Code Execution Vulnerability." This affects Microsoft SharePoint.

8.8CVSS8.3AI score0.18206EPSS

CVE•added 2018/10/10 1:29 p.m.•60 views

CVE-2018-8488

5.4CVSS5.6AI score0.00272EPSS

CVE•added 2018/04/12 1:29 a.m.•58 views

CVE-2018-1032

5.4CVSS5.5AI score0.00536EPSS

CVE•added 2018/10/10 1:29 p.m.•58 views

CVE-2018-8498

5.4CVSS5.6AI score0.00272EPSS

CVE•added 2018/09/13 12:29 a.m.•56 views

CVE-2018-8428