Filtered by vendor Microsoft
Subscriptions
Filtered by product Sharepoint Server
Subscriptions
Total
424 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-33160 | 1 Microsoft | 1 Sharepoint Server | 2024-08-02 | 8.8 High |
Microsoft SharePoint Server Remote Code Execution Vulnerability | ||||
CVE-2023-33159 | 1 Microsoft | 1 Sharepoint Server | 2024-08-02 | 8.8 High |
Microsoft SharePoint Server Spoofing Vulnerability | ||||
CVE-2023-33132 | 1 Microsoft | 1 Sharepoint Server | 2024-08-02 | 6.3 Medium |
Microsoft SharePoint Server Spoofing Vulnerability | ||||
CVE-2023-33165 | 1 Microsoft | 1 Sharepoint Server | 2024-08-02 | 4.3 Medium |
Microsoft SharePoint Server Security Feature Bypass Vulnerability | ||||
CVE-2023-33134 | 1 Microsoft | 1 Sharepoint Server | 2024-08-02 | 8.8 High |
Microsoft SharePoint Server Remote Code Execution Vulnerability | ||||
CVE-2023-33129 | 1 Microsoft | 1 Sharepoint Server | 2024-08-02 | 6.5 Medium |
Microsoft SharePoint Denial of Service Vulnerability | ||||
CVE-2023-33157 | 1 Microsoft | 1 Sharepoint Server | 2024-08-02 | 8.8 High |
Microsoft SharePoint Remote Code Execution Vulnerability | ||||
CVE-2023-29357 | 1 Microsoft | 1 Sharepoint Server | 2024-08-02 | 9.8 Critical |
Microsoft SharePoint Server Elevation of Privilege Vulnerability | ||||
CVE-2023-28288 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2024-08-02 | 8.1 High |
Microsoft SharePoint Server Spoofing Vulnerability | ||||
CVE-2023-24950 | 1 Microsoft | 2 Sharepoint Enterprise Server, Sharepoint Server | 2024-08-02 | 6.5 Medium |
Microsoft SharePoint Server Spoofing Vulnerability | ||||
CVE-2023-24955 | 1 Microsoft | 2 Sharepoint Enterprise Server, Sharepoint Server | 2024-08-02 | 7.2 High |
Microsoft SharePoint Server Remote Code Execution Vulnerability | ||||
CVE-2023-24954 | 1 Microsoft | 14 Sharepoint Enterprise Server, Sharepoint Server, Windows 10 1507 and 11 more | 2024-08-02 | 6.5 Medium |
Microsoft SharePoint Server Information Disclosure Vulnerability | ||||
CVE-2023-23395 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2024-08-02 | 3.1 Low |
Microsoft SharePoint Server Spoofing Vulnerability | ||||
CVE-2023-21744 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2024-08-02 | 8.8 High |
Microsoft SharePoint Server Remote Code Execution Vulnerability | ||||
CVE-2023-21742 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2024-08-02 | 8.8 High |
Microsoft SharePoint Server Remote Code Execution Vulnerability | ||||
CVE-2023-21716 | 1 Microsoft | 10 365 Apps, Office, Office Long Term Servicing Channel and 7 more | 2024-08-02 | 9.8 Critical |
Microsoft Word Remote Code Execution Vulnerability | ||||
CVE-2023-21743 | 1 Microsoft | 1 Sharepoint Server | 2024-08-02 | 5.3 Medium |
Microsoft SharePoint Server Security Feature Bypass Vulnerability | ||||
CVE-2023-21717 | 1 Microsoft | 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server | 2024-08-02 | 8.8 High |
Microsoft SharePoint Server Elevation of Privilege Vulnerability | ||||
CVE-2024-33879 | 2 Microsoft, Virtosoftware | 2 Sharepoint Server, Sharepoint Bulk File Download | 2024-08-02 | 9.8 Critical |
An issue was discovered in VirtoSoftware Virto Bulk File Download 5.5.44 for SharePoint 2019. The Virto.SharePoint.FileDownloader/Api/Download.ashx isCompleted method allows arbitrary file download and deletion via absolute path traversal in the path parameter. | ||||
CVE-2024-33880 | 2 Microsoft, Virtosoftware | 2 Sharepoint Server, Sharepoint Bulk File Download | 2024-08-02 | 5.3 Medium |
An issue was discovered in VirtoSoftware Virto Bulk File Download 5.5.44 for SharePoint 2019. It discloses full pathnames via Virto.SharePoint.FileDownloader/Api/Download.ashx?action=archive. |