Vulnerabilities > Microsoft > Sharepoint Enterprise Server

DATE CVE VULNERABILITY TITLE RISK
2023-11-14 CVE-2023-38177 Unspecified vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server
Microsoft SharePoint Server Remote Code Execution Vulnerability
low complexity
microsoft
6.8
6.8
2023-02-14 CVE-2023-21716 Unspecified vulnerability in Microsoft products
Microsoft Word Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2022-01-11 CVE-2022-21840 Unspecified vulnerability in Microsoft products
Microsoft Office Remote Code Execution Vulnerability
network
low complexity
microsoft
8.8
8.8
2021-12-29 CVE-2021-43876 Unspecified vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server
Microsoft SharePoint Elevation of Privilege Vulnerability
network
low complexity
microsoft
8.8
8.8
2021-12-15 CVE-2021-42294 Unspecified vulnerability in Microsoft products
Microsoft SharePoint Server Remote Code Execution Vulnerability
network
low complexity
microsoft
7.2
7.2
2021-12-15 CVE-2021-42309 Incorrect Permission Assignment for Critical Resource vulnerability in Microsoft products
Microsoft SharePoint Server Remote Code Execution Vulnerability
network
low complexity
microsoft CWE-732
8.8
8.8
2021-12-15 CVE-2021-42320 Authentication Bypass by Spoofing vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server
Microsoft SharePoint Server Spoofing Vulnerability
network
low complexity
microsoft CWE-290
5.7
5.7
2021-12-15 CVE-2021-43242 Unspecified vulnerability in Microsoft products
Microsoft SharePoint Server Spoofing Vulnerability
network
low complexity
microsoft
5.7
5.7
2020-08-17 CVE-2020-1580 Cross-site Scripting vulnerability in Microsoft products
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.
network
low complexity
microsoft CWE-79
5.4
5.4
2020-08-17 CVE-2020-1503 Unspecified vulnerability in Microsoft products
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory.
local
low complexity
microsoft
5.5
5.5