Vulnerabilities > Microsoft > Sharepoint Enterprise Server > High

DATE CVE VULNERABILITY TITLE RISK
2023-05-09 CVE-2023-24955 Code Injection vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server
Microsoft SharePoint Server Remote Code Execution Vulnerability
network
low complexity
microsoft CWE-94
7.2
7.2
2022-01-11 CVE-2022-21840 Unspecified vulnerability in Microsoft products
Microsoft Office Remote Code Execution Vulnerability
network
low complexity
microsoft
8.8
8.8
2021-12-29 CVE-2021-43876 Unspecified vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server
Microsoft SharePoint Elevation of Privilege Vulnerability
network
low complexity
microsoft
8.8
8.8
2021-12-15 CVE-2021-42294 Unspecified vulnerability in Microsoft products
Microsoft SharePoint Server Remote Code Execution Vulnerability
network
low complexity
microsoft
7.2
7.2
2021-12-15 CVE-2021-42309 Incorrect Permission Assignment for Critical Resource vulnerability in Microsoft products
Microsoft SharePoint Server Remote Code Execution Vulnerability
network
low complexity
microsoft CWE-732
8.8
8.8
2020-08-17 CVE-2020-1495 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory.
network
low complexity
microsoft
8.8
8.8
2020-07-14 CVE-2020-1448 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'.
network
low complexity
microsoft
8.8
8.8
2020-07-14 CVE-2020-1447 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'.
network
low complexity
microsoft
8.8
8.8
2020-07-14 CVE-2020-1446 Unspecified vulnerability in Microsoft products
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'.
network
low complexity
microsoft
8.8
8.8
2020-07-14 CVE-2020-1439 Deserialization of Untrusted Data vulnerability in Microsoft products
A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input, aka 'PerformancePoint Services Remote Code Execution Vulnerability'.
network
low complexity
microsoft CWE-502
8.8
8.8