CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-40487 – Microsoft SharePoint Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-40487
13 Oct 2021 — Microsoft SharePoint Server Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft SharePoint Server. Este ID de CVE es diferente de CVE-2021-41344 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint. Authentication is required to exploit this vulnerability. The specific flaw exists within the Microsoft.SharePoint.WorkflowActions.SetVariableActivity class. A crafted SetVariableActivity element can r... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40487 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 0CVE-2021-40486 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-40486
13 Oct 2021 — Microsoft Word Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft Word This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DOC files. The issue results from the lack of validating the existence of an object prior to perfor... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40486 •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2021-40485 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-40485
13 Oct 2021 — Microsoft Excel Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft Excel. Este ID de CVE es diferente de CVE-2021-40471, CVE-2021-40473, CVE-2021-40474, CVE-2021-40479 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40485 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.6EPSS: 6%CPEs: 3EXPL: 0CVE-2021-40484 – Microsoft SharePoint Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2021-40484
13 Oct 2021 — Microsoft SharePoint Server Spoofing Vulnerability Una vulnerabilidad de Suplantación de Identidad en Microsoft SharePoint. Este ID de CVE es diferente de CVE-2021-40483 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40484 •
CVSS: 7.6EPSS: 1%CPEs: 2EXPL: 0CVE-2021-38652 – Microsoft SharePoint Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2021-38652
15 Sep 2021 — Microsoft SharePoint Server Spoofing Vulnerability Una Vulnerabilidad de Suplantación de Identidad de Microsoft SharePoint Server. Este CVE ID es diferente de CVE-2021-38651 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38652 •
CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0CVE-2021-38651 – Microsoft SharePoint Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2021-38651
15 Sep 2021 — Microsoft SharePoint Server Spoofing Vulnerability Una Vulnerabilidad de Suplantación de Identidad de Microsoft SharePoint Server . Este CVE ID es diferente de CVE-2021-38652 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38651 •
CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0CVE-2021-36940 – Microsoft SharePoint Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2021-36940
12 Aug 2021 — Microsoft SharePoint Server Spoofing Vulnerability Una Vulnerabilidad de suplantación de identidad en Microsoft SharePoint Server • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36940 •
CVSS: 8.1EPSS: 5%CPEs: 3EXPL: 0CVE-2021-31948 – Microsoft SharePoint Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2021-31948
08 Jun 2021 — Microsoft SharePoint Server Spoofing Vulnerability Una vulnerabilidad de Suplantación de Identidad de Microsoft SharePoint Server. Este ID de CVE es diferente de CVE-2021-31950, CVE-2021-31964 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31948 •
CVSS: 8.8EPSS: 3%CPEs: 3EXPL: 0CVE-2021-26420 – Microsoft SharePoint Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-26420
08 Jun 2021 — Microsoft SharePoint Server Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft SharePoint Server. Este ID de CVE es diferente de CVE-2021-31963, CVE-2021-31966 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint. Authentication is required to exploit this vulnerability. The specific flaw exists within the System.Workflow.ComponentModel.Compiler.WorkflowCompilerInternal class. This class allows a... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26420 •
CVSS: 8.8EPSS: 18%CPEs: 3EXPL: 2CVE-2021-31181 – Microsoft SharePoint Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-31181
11 May 2021 — Microsoft SharePoint Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft SharePoint This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of server-side controls in WebParts. By specifying a control using a non-canonical string, an unsafe server-side control can be instantiated. An attacker can l... • https://packetstorm.news/files/id/163208 • CWE-94: Improper Control of Generation of Code ('Code Injection') •