Page 20 of 264 results (0.013 seconds)

CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 0

Microsoft Word Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft Word This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DOC files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28453 https://www.zerodayinitiative.com/advisories/ZDI-21-423 •

CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0

Microsoft SharePoint Denial of Service Vulnerability Una Actualización de una Denegación de Servicio de Microsoft SharePoint • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28450 •

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0

Microsoft SharePoint Server Information Disclosure Vulnerability Una Vulnerabilidad de Divulgación de Información de Microsoft SharePoint Server • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27052 •

CVSS: 5.8EPSS: 29%CPEs: 3EXPL: 0

Microsoft SharePoint Server Spoofing Vulnerability Una Vulnerabilidad de Suplantación de Identidad de Microsoft SharePoint • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24104 •

CVSS: 8.8EPSS: 4%CPEs: 4EXPL: 0

Microsoft SharePoint Server Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota de Microsoft SharePoint Server This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of InfoPath attachments. Tampering with client-side data can trigger the deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the SharePoint web server process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27076 https://www.zerodayinitiative.com/advisories/ZDI-21-276 •