Vulnerabilities > Microsoft > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-16 | CVE-2019-0971 | Improper Encoding or Escaping of Output vulnerability in Microsoft Azure Devops Server and Team Foundation Server An information disclosure vulnerability exists when Azure DevOps Server and Microsoft Team Foundation Server do not properly sanitize a specially crafted authentication request to an affected server, aka 'Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability'. | 6.5 |
| 2019-05-16 | CVE-2019-0963 | Cross-site Scripting vulnerability in Microsoft Sharepoint Foundation 2013 A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. | 5.4 |
| 2019-05-16 | CVE-2019-0961 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. | 6.5 |
| 2019-05-16 | CVE-2019-0956 | Improper Encoding or Escaping of Output vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Server Information Disclosure Vulnerability'. | 6.5 |
| 2019-05-16 | CVE-2019-0951 | Cross-site Scripting vulnerability in Microsoft Sharepoint Foundation 2010/2013 A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. | 5.4 |
| 2019-05-16 | CVE-2019-0950 | Cross-site Scripting vulnerability in Microsoft Sharepoint Foundation and Sharepoint Server A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. | 5.7 |
| 2019-05-16 | CVE-2019-0949 | Cross-site Scripting vulnerability in Microsoft Sharepoint Foundation and Sharepoint Server A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. | 5.7 |
| 2019-05-16 | CVE-2019-0942 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists in the Unified Write Filter (UWF) feature for Windows 10 when it improperly restricts access to the registry, aka 'Unified Write Filter Elevation of Privilege Vulnerability'. | 5.5 |
| 2019-05-16 | CVE-2019-0932 | Unspecified vulnerability in Microsoft Skype 8.35 An information disclosure vulnerability exists in Skype for Android, aka 'Skype for Android Information Disclosure Vulnerability'. | 5.9 |
| 2019-05-16 | CVE-2019-0930 | Unspecified vulnerability in Microsoft Internet Explorer 10/11/9 An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory, aka 'Internet Explorer Information Disclosure Vulnerability'. | 6.5 |