Sharepoint Server@2019 Security Vulnerabilities and Issues — Page 6 of Sharepoint Server@2019 CVE List

Lucene search

MicrosoftSharepoint Server2019

288 matches found

CVE•added 2020/05/21 11:15 p.m.•78 views

CVE-2020-1104

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-1105, CVE-2020-1107.

5.4CVSS5.4AI score0.00675EPSS

CVE•added 2022/09/13 7:15 p.m.•78 views

CVE-2022-35823

Microsoft SharePoint Remote Code Execution Vulnerability

8.8CVSS8.7AI score0.36344EPSS

CVE•added 2019/01/08 9:29 p.m.•77 views

CVE-2019-0562

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoin...

5.4CVSS6.2AI score0.00495EPSS

CVE•added 2021/12/15 3:15 p.m.•77 views

CVE-2021-43242

Microsoft SharePoint Server Spoofing Vulnerability

7.6CVSS6.4AI score0.00826EPSS

CVE•added 2018/11/14 1:29 a.m.•76 views

CVE-2018-8568

5.4CVSS6.3AI score0.00427EPSS

CVE•added 2019/06/12 2:29 p.m.•76 views

CVE-2019-1033

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint ...

5.4CVSS5.1AI score0.00528EPSS

CVE•added 2020/06/09 8:15 p.m.•75 views

CVE-2020-1318

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1177, CVE-2020-1183, CVE-2020-1297...

5.4CVSS5.1AI score0.01048EPSS

CVE•added 2024/09/10 5:15 p.m.•75 views

CVE-2024-43464

Microsoft SharePoint Server Remote Code Execution Vulnerability

7.2CVSS7.8AI score0.66597EPSS

CVE•added 2025/01/14 6:16 p.m.•75 views

CVE-2025-21393

Microsoft SharePoint Server Spoofing Vulnerability

6.3CVSS6.2AI score0.00117EPSS

CVE•added 2020/06/09 8:15 p.m.•74 views

CVE-2020-1295

An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'.

8.8CVSS8.2AI score0.12824EPSS

CVE•added 2021/12/15 3:15 p.m.•73 views

CVE-2021-42294

Microsoft SharePoint Server Remote Code Execution Vulnerability

7.2CVSS7.8AI score0.01091EPSS

CVE•added 2018/11/14 1:29 a.m.•70 views

CVE-2018-8572

5.4CVSS6.3AI score0.00427EPSS

CVE•added 2021/12/29 11:15 p.m.•70 views

CVE-2021-43876

Microsoft SharePoint Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.0101EPSS

CVE•added 2022/10/11 7:15 p.m.•70 views

CVE-2022-41037

Microsoft SharePoint Server Remote Code Execution Vulnerability

8.8CVSS8.7AI score0.0646EPSS

CVE•added 2022/10/11 7:15 p.m.•68 views

CVE-2022-41036

Microsoft SharePoint Server Remote Code Execution Vulnerability

8.8CVSS8.7AI score0.0646EPSS

CVE•added 2024/09/10 5:15 p.m.•67 views

CVE-2024-38227

Microsoft SharePoint Server Remote Code Execution Vulnerability

7.2CVSS7.8AI score0.01843EPSS

CVE•added 2024/09/10 5:15 p.m.•67 views

CVE-2024-38228

Microsoft SharePoint Server Remote Code Execution Vulnerability

7.2CVSS7.8AI score0.01843EPSS

CVE•added 2024/12/12 2:4 a.m.•67 views

CVE-2024-49070

Microsoft SharePoint Remote Code Execution Vulnerability

7.4CVSS7.6AI score0.00147EPSS

CVE•added 2024/09/10 5:15 p.m.•66 views

CVE-2024-43466

Microsoft SharePoint Server Denial of Service Vulnerability

7.5CVSS7.2AI score0.12381EPSS

CVE•added 2025/06/10 5:23 p.m.•66 views

CVE-2025-47168

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00079EPSS

CVE•added 2024/12/12 2:4 a.m.•65 views

CVE-2024-49068

Microsoft SharePoint Elevation of Privilege Vulnerability

8.2CVSS8.1AI score0.02449EPSS

CVE•added 2024/10/08 6:15 p.m.•64 views

CVE-2024-43503

Microsoft SharePoint Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00845EPSS

CVE•added 2021/12/15 3:15 p.m.•62 views

CVE-2021-42320

Microsoft SharePoint Server Spoofing Vulnerability

8CVSS6AI score0.00669EPSS

CVE•added 2025/06/10 5:23 p.m.•59 views

CVE-2025-47169

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.

7.8CVSS7.9AI score0.00079EPSS

CVE•added 2024/12/12 2:4 a.m.•56 views

CVE-2024-49064

Microsoft SharePoint Information Disclosure Vulnerability

6.5CVSS6.1AI score0.00366EPSS

CVE•added 2025/05/13 5:16 p.m.•55 views

CVE-2025-30378

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

7CVSS7.4AI score0.00297EPSS

CVE•added 2025/06/10 5:23 p.m.•55 views

CVE-2025-47172

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

8.8CVSS8.8AI score0.00202EPSS

CVE•added 2025/06/10 5:23 p.m.•54 views

CVE-2025-47163

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

8.8CVSS8.7AI score0.01885EPSS

CVE•added 2025/05/13 5:15 p.m.•52 views

CVE-2025-29976

Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00061EPSS

CVE•added 2025/06/10 5:23 p.m.•49 views

CVE-2025-47166

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

8.8CVSS8.7AI score0.03474EPSS

CVE•added 2025/05/13 5:16 p.m.•46 views

CVE-2025-30382

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

7.8CVSS7.7AI score0.00323EPSS

CVE•added 2025/05/13 5:16 p.m.•45 views

CVE-2025-30384

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally.

7.4CVSS7.4AI score0.00704EPSS

CVE•added 2025/07/08 5:15 p.m.•30 views

CVE-2025-49703

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

7.8CVSS7.3AI score0.00068EPSS

CVE•added 2025/07/08 5:15 p.m.•25 views

CVE-2025-49701

Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

8.8CVSS6.8AI score0.00145EPSS

CVE•added 2025/08/12 6:15 p.m.•16 views

CVE-2025-53733

Incorrect conversion between numeric types in Microsoft Office Word allows an unauthorized attacker to execute code locally.

8.4CVSS7.5AI score0.00143EPSS

CVE•added 2025/08/12 6:15 p.m.•14 views

CVE-2025-49712

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

8.8CVSS7.4AI score0.00621EPSS

CVE•added 2025/08/12 6:15 p.m.•11 views

CVE-2025-53760

Server-side request forgery (ssrf) in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network.

7.1CVSS7.1AI score0.00055EPSS

CVE•added 2025/08/12 6:15 p.m.•8 views

CVE-2025-53736

Buffer over-read in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

6.8CVSS6.7AI score0.00046EPSS

Total number of security vulnerabilities288