Vulnerabilities > Microsoft > Sharepoint Server > Medium

DATE CVE VULNERABILITY TITLE RISK
2025-01-14 CVE-2025-21393 Unspecified vulnerability in Microsoft Sharepoint Server 16.0.17328.20362/2016/2019
Microsoft SharePoint Server Spoofing Vulnerability
network
low complexity
microsoft
6.3
6.3
2024-12-12 CVE-2024-49062 Unspecified vulnerability in Microsoft Sharepoint Server 2016/2019
Microsoft SharePoint Information Disclosure Vulnerability
network
low complexity
microsoft
6.5
6.5
2024-12-12 CVE-2024-49064 Unspecified vulnerability in Microsoft Sharepoint Server 2016/2019
Microsoft SharePoint Information Disclosure Vulnerability
network
low complexity
microsoft
6.5
6.5
2024-12-12 CVE-2024-49065 Unspecified vulnerability in Microsoft products
Microsoft Office Remote Code Execution Vulnerability
local
low complexity
microsoft
5.5
5.5
2023-11-14 CVE-2023-38177 Unspecified vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server
Microsoft SharePoint Server Remote Code Execution Vulnerability
low complexity
microsoft
6.8
6.8
2021-12-15 CVE-2021-42320 Authentication Bypass by Spoofing vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server
Microsoft SharePoint Server Spoofing Vulnerability
network
low complexity
microsoft CWE-290
5.7
5.7
2021-12-15 CVE-2021-43242 Unspecified vulnerability in Microsoft products
Microsoft SharePoint Server Spoofing Vulnerability
network
low complexity
microsoft
5.7
5.7
2020-08-17 CVE-2020-1580 Cross-site Scripting vulnerability in Microsoft products
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.
network
low complexity
microsoft CWE-79
5.4
5.4
2020-08-17 CVE-2020-1503 Unspecified vulnerability in Microsoft products
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory.
local
low complexity
microsoft
5.5
5.5
2020-08-17 CVE-2020-1502 Unspecified vulnerability in Microsoft products
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory.
local
low complexity
microsoft
5.5
5.5