Vulnerabilities > Microsoft > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-08-17 | CVE-2020-1580 | Cross-site Scripting vulnerability in Microsoft products A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. | 5.4 |
2020-08-17 | CVE-2020-1578 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass. | 4.7 |
2020-08-17 | CVE-2020-1503 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. | 5.5 |
2020-08-17 | CVE-2020-1502 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. | 5.5 |
2020-08-17 | CVE-2020-1501 | Unspecified vulnerability in Microsoft products A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. | 5.4 |
2020-08-17 | CVE-2020-1500 | Unspecified vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. | 5.4 |
2020-08-17 | CVE-2020-1499 | Unspecified vulnerability in Microsoft products A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. | 5.4 |
2020-08-17 | CVE-2020-1497 | Unspecified vulnerability in Microsoft 365 Apps, Excel and Office An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. | 5.5 |
2020-08-17 | CVE-2020-1493 | Unspecified vulnerability in Microsoft 365 Apps, Office and Outlook An information disclosure vulnerability exists when attaching files to Outlook messages. | 5.5 |
2020-08-17 | CVE-2020-1476 | Unspecified vulnerability in Microsoft .Net Framework An elevation of privilege vulnerability exists when ASP.NET or .NET web applications running on IIS improperly allow access to cached files. | 5.5 |