Sharepoint Enterprise Server@2016 Security Vulnerabilities and Issues — Page 5 of Sharepoint Enterprise Server@2016 CVE List

Lucene search

MicrosoftSharepoint Enterprise Server2016

243 matches found

CVE•added 2017/10/13 1:29 p.m.•74 views

CVE-2017-11777

Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting (XSS) vulnerability by sending a specially crafted request to an affected SharePoint server, due to how SharePoint Server sanitizes web requests, aka "...

5.4CVSS5.2AI score0.00855EPSS

CVE•added 2018/09/13 12:29 a.m.•74 views

CVE-2018-8431

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoin...

5.4CVSS5.6AI score0.00427EPSS

CVE•added 2020/06/09 8:15 p.m.•74 views

CVE-2020-1295

An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'.

8.8CVSS8.2AI score0.09864EPSS

CVE•added 2019/05/16 7:29 p.m.•73 views

CVE-2019-0956

An information disclosure vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Server Information Disclosure Vulnerability'.

6.5CVSS6.2AI score0.10949EPSS

CVE•added 2021/12/15 3:15 p.m.•73 views

CVE-2021-42294

Microsoft SharePoint Server Remote Code Execution Vulnerability

7.2CVSS7.8AI score0.00685EPSS

CVE•added 2018/03/14 5:29 p.m.•72 views

CVE-2018-0919

Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps 2013 SP1, Microsoft SharePoint Enterprise Server 2013 SP1, Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint...

4.3CVSS4.9AI score0.06725EPSS

CVE•added 2018/04/12 1:29 a.m.•72 views

CVE-2018-1005

5.4CVSS5.5AI score0.00536EPSS

CVE•added 2017/06/15 1:29 a.m.•71 views

CVE-2017-8514

An information disclosure vulnerability exists when Microsoft SharePoint software fails to properly sanitize a specially crafted requests, aka "Microsoft SharePoint Reflective XSS Vulnerability".

5.4CVSS5.4AI score0.00592EPSS

CVE•added 2018/03/14 5:29 p.m.•71 views

CVE-2018-0923

Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE-2018-0910. CVE-2018-0911, CVE-2018-0912, CV...

8.8CVSS8.4AI score0.07376EPSS

CVE•added 2018/03/14 5:29 p.m.•71 views

CVE-2018-0944

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE-2018-...

8.8CVSS8.4AI score0.07376EPSS

CVE•added 2021/12/29 11:15 p.m.•70 views

CVE-2021-43876

Microsoft SharePoint Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.0101EPSS

CVE•added 2018/07/11 12:29 a.m.•69 views

CVE-2018-8299

5.4CVSS5.6AI score0.00432EPSS

CVE•added 2018/11/14 1:29 a.m.•69 views

CVE-2018-8572

5.4CVSS6.3AI score0.00427EPSS

CVE•added 2018/03/14 5:29 p.m.•68 views

CVE-2018-0922

Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office Compatibility Pack SP2, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps 2013 SP1, Microsoft Office Word Viewer, Microsoft SharePoint Enterprise Server 2013...

9.3CVSS7.8AI score0.19242EPSS

CVE•added 2018/12/12 12:29 a.m.•68 views

CVE-2018-8635

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted authentication request to an affected SharePoint server, aka "Microsoft SharePoint Server Elevation of Privilege Vulnerability." This affects Microsoft SharePoint Server, M...

8.8CVSS4.9AI score0.12974EPSS

CVE•added 2018/03/14 5:29 p.m.•67 views

CVE-2018-0947

Microsoft SharePoint Foundation 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE...

8.8CVSS8.5AI score0.07376EPSS

CVE•added 2018/03/14 5:29 p.m.•66 views

CVE-2018-0911

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE-2018-0...

8.8CVSS8.5AI score0.07376EPSS

CVE•added 2018/03/14 5:29 p.m.•66 views

CVE-2018-0914

8.8CVSS8.5AI score0.07376EPSS

CVE•added 2018/03/14 5:29 p.m.•63 views

CVE-2018-0916

8.8CVSS8.5AI score0.07376EPSS

CVE•added 2018/07/11 12:29 a.m.•63 views

CVE-2018-8300

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka "Microsoft SharePoint Remote Code Execution Vulnerability." This affects Microsoft SharePoint.

8.8CVSS8.3AI score0.18206EPSS

CVE•added 2021/12/15 3:15 p.m.•62 views

CVE-2021-42320

Microsoft SharePoint Server Spoofing Vulnerability

8CVSS6AI score0.00669EPSS

CVE•added 2018/10/10 1:29 p.m.•60 views

CVE-2018-8488

5.4CVSS5.6AI score0.00272EPSS

CVE•added 2018/12/12 3:29 p.m.•60 views

CVE-2018-8650

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability." This affects Microsoft SharePoint.

5.4CVSS4.2AI score0.00485EPSS

CVE•added 2018/03/14 5:29 p.m.•59 views

CVE-2018-0915

8.8CVSS8.5AI score0.07376EPSS

CVE•added 2025/06/10 5:23 p.m.•59 views

CVE-2025-47168

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00068EPSS

CVE•added 2018/03/14 5:29 p.m.•58 views

CVE-2018-0912

8.8CVSS8.5AI score0.07376EPSS

CVE•added 2018/04/12 1:29 a.m.•58 views

CVE-2018-1032

5.4CVSS5.5AI score0.00536EPSS

CVE•added 2018/10/10 1:29 p.m.•58 views

CVE-2018-8498

5.4CVSS5.6AI score0.00272EPSS

CVE•added 2018/03/14 5:29 p.m.•56 views

CVE-2018-0910

8.8CVSS8.5AI score0.07376EPSS

CVE•added 2018/09/13 12:29 a.m.•56 views

CVE-2018-8428

5.4CVSS5.6AI score0.00427EPSS

CVE•added 2018/03/14 5:29 p.m.•55 views

CVE-2018-0913

8.8CVSS8.5AI score0.07376EPSS

CVE•added 2018/03/14 5:29 p.m.•55 views

CVE-2018-0917

8.8CVSS8.4AI score0.07376EPSS

CVE•added 2018/03/14 5:29 p.m.•55 views

CVE-2018-0921

8.8CVSS8.4AI score0.07376EPSS

CVE•added 2018/04/12 1:29 a.m.•54 views

CVE-2018-1014

5.4CVSS5.5AI score0.00536EPSS

CVE•added 2025/06/10 5:23 p.m.•54 views

CVE-2025-47172

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

8.8CVSS8.8AI score0.00174EPSS

CVE•added 2018/02/15 2:29 a.m.•53 views

CVE-2018-0869

SharePoint Server 2016 allows an elevation of privilege vulnerability due to how web requests are handled, aka "Microsoft SharePoint Elevation of Privilege Vulnerability".

5.4CVSS5.8AI score0.00881EPSS

CVE•added 2025/06/10 5:23 p.m.•53 views

CVE-2025-47163

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

8.8CVSS8.7AI score0.01629EPSS

CVE•added 2025/06/10 5:23 p.m.•52 views

CVE-2025-47169

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.

7.8CVSS7.9AI score0.00068EPSS

CVE•added 2018/07/11 12:29 a.m.•49 views

CVE-2018-8323

5.4CVSS5.6AI score0.00432EPSS