CVSS: 8.8EPSS: 1%CPEs: 5EXPL: 0CVE-2022-30158 – Microsoft SharePoint Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-30158
Microsoft SharePoint Server Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota en Microsoft SharePoint Server. Este ID de CVE es diferente de CVE-2022-30157 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30158 •
CVSS: 8.8EPSS: 2%CPEs: 4EXPL: 0CVE-2022-30157 – Microsoft SharePoint Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-30157
Microsoft SharePoint Server Remote Code Execution Vulnerability Una Vulnerabilidad de Ejecución de Código Remota en Microsoft SharePoint Server. Este ID de CVE es diferente de CVE-2022-30158 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of charts. Tampering with client-side data can trigger the deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the SharePoint web server process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30157 •
CVSS: 8.8EPSS: 3%CPEs: 4EXPL: 0CVE-2022-29108 – Microsoft SharePoint Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-29108
Microsoft SharePoint Server Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft SharePoint Server This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of charts. Tampering with client-side data can trigger the deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the SharePoint web server process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29108 •
CVSS: 8.0EPSS: 0%CPEs: 5EXPL: 0CVE-2022-24472 – Microsoft SharePoint Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2022-24472
Microsoft SharePoint Server Spoofing Vulnerability Una vulnerabilidad de suplantación de identidad de Microsoft SharePoint Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24472 •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-22716 – Microsoft Excel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-22716
Microsoft Excel Information Disclosure Vulnerability Una Vulnerabilidad de Divulgación de Información de Microsoft Excel This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. The issue results from the lack of proper validation of a user-supplied value prior to dereferencing it as a pointer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22716 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •