Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2018-11-14	CVE-2018-8607	Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.0/8.2 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. network low complexity microsoft CWE-79	5.4
2018-11-14	CVE-2018-8606	Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.0/8.2 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. network low complexity microsoft CWE-79	5.4
2018-11-14	CVE-2018-8605	Cross-site Scripting vulnerability in Microsoft Dynamics 365 8.0/8.2 A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. network low complexity microsoft CWE-79	5.4
2018-11-14	CVE-2018-8602	Cross-site Scripting vulnerability in Microsoft Team Foundation Server 2017/2018 A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka "Team Foundation Server Cross-site Scripting Vulnerability." This affects Team. network low complexity microsoft CWE-79	5.4
2018-11-14	CVE-2018-8600	Cross-site Scripting vulnerability in Microsoft Azure APP Service on Azure Stack A Cross-site Scripting (XSS) vulnerability exists when Azure App Services on Azure Stack does not properly sanitize user provided input, aka "Azure App Service Cross-site Scripting Vulnerability." This affects Azure App. network low complexity microsoft CWE-79	6.1
2018-11-14	CVE-2018-8592	Unspecified vulnerability in Microsoft Windows 10 and Windows Server 2019 An elevation of privilege vulnerability exists in Windows 10 version 1809 when installed from physical media (USB, DVD, etc, aka "Windows Elevation Of Privilege Vulnerability." This affects Windows 10, Windows Server 2019. high complexity microsoft	6.4
2018-11-14	CVE-2018-8579	Unspecified vulnerability in Microsoft Office and Office 365 Proplus An information disclosure vulnerability exists when attaching files to Outlook messages, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office. network low complexity microsoft	6.5
2018-11-14	CVE-2018-8578	Unspecified vulnerability in Microsoft Sharepoint Enterprise Server 2013 An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when rendering specific web pages, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microsoft SharePoint. network low complexity microsoft	4.3
2018-11-14	CVE-2018-8572	Cross-site Scripting vulnerability in Microsoft products An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoint. network low complexity microsoft CWE-79	5.4
2018-11-14	CVE-2018-8568	Cross-site Scripting vulnerability in Microsoft products An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoint. network low complexity microsoft CWE-79	5.4