NotCVE - vendor:"Microsoft" product:"Sharepoint Enterprise Server 2013"

2 results (0.002 seconds)

CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0

CVE-2018-8426

https://notcve.org/view.php?id=CVE-2018-8426

13 Sep 2018 — A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoint. Existe una vulnerabilidad Cross-Site Scripting (XSS) cuando Microsoft SharePoint Server no sanea correctamente una petición web especialmente manipulada enviada a un servidor SharePoint afectado. Esto también se conoce ... • http://www.securityfocus.com/bid/105208 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.5EPSS: 23%CPEs: 15EXPL: 0

CVE-2018-8378

https://notcve.org/view.php?id=CVE-2018-8378

15 Aug 2018 — An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka "Microsoft Office Information Disclosure Vulnerability." This affects Word, Microsoft SharePoint Server, Microsoft Office Word Viewer, Microsoft Excel Viewer, Microsoft SharePoint, Microsoft Office. Existe una vulnerabilidad de divulgación de información cuando el software de Microsoft Office lee memoria fuera de límites de... • http://www.securityfocus.com/bid/104996 • CWE-125: Out-of-bounds Read CWE-908: Use of Uninitialized Resource •