CVSS: 7.8EPSS: 1%CPEs: 3EXPL: 0CVE-2024-30100 – Microsoft SharePoint Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-30100
11 Jun 2024 — Microsoft SharePoint Server Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft SharePoint Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30100 • CWE-426: Untrusted Search Path •
CVSS: 9.3EPSS: 33%CPEs: 2EXPL: 0CVE-2017-8513
https://notcve.org/view.php?id=CVE-2017-8513
15 Jun 2017 — A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability". Se presenta una vulnerabilidad de ejecución de código remota en Microsoft PowerPoint cuando el software no maneja apropiadamente los objetos en la memoria, también se conoce como "Microsoft PowerPoint Remote Code Execution Vulnerability". • http://www.securityfocus.com/bid/98830 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 23%CPEs: 4EXPL: 0CVE-2017-0006
https://notcve.org/view.php?id=CVE-2017-0006
17 Mar 2017 — Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, Excel Viewer, and Excel Services on SharePoint Server 2007 SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." This vulnerability is different from those described in CVE-2017-0019, CVE-2017-0020, CVE-2017-0030, CVE-2017-0031, CVE-2017-0052, and CVE-2017-0053. Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, Excel V... • http://www.securityfocus.com/bid/96740 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 23%CPEs: 4EXPL: 0CVE-2017-0052
https://notcve.org/view.php?id=CVE-2017-0052
17 Mar 2017 — Microsoft Office Compatibility Pack SP3, Excel 2007 SP3, Excel Viewer, and Excel Services on SharePoint Server 2007 SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." This vulnerability is different from those described in CVE-2017-0006, CVE-2017-0019, CVE-2017-0020, CVE-2017-0030, CVE-2017-0031, and CVE-2017-0053. Microsoft Office Compatibility Pack SP3, Excel 2007 SP3, Excel V... • http://www.securityfocus.com/bid/96741 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.1EPSS: 11%CPEs: 9EXPL: 0CVE-2016-7265
https://notcve.org/view.php?id=CVE-2016-7265
20 Dec 2016 — Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, Excel Viewer, Excel Services on SharePoint Server 2007 SP3, and Excel Services on SharePoint Server 2010 SP2 allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via a crafted document, aka "Microsoft Office Information Disclosure Vulnerability." Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT S... • http://www.securityfocus.com/bid/94721 • CWE-125: Out-of-bounds Read •
CVSS: 9.3EPSS: 40%CPEs: 12EXPL: 0CVE-2015-6038 – Microsoft Office Excel Binary Worksheet Uninitialized Pointer Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-6038
10 Nov 2015 — Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, Office Compatibility Pack SP3, Excel Viewer, and Excel Services on SharePoint Server 2007 SP3, 2010 SP2, and 2013 SP1 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel para Mac 2011, Excel 2016 para Mac... • http://www.securityfocus.com/bid/77489 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 42%CPEs: 2EXPL: 0CVE-2015-2556
https://notcve.org/view.php?id=CVE-2015-2556
14 Oct 2015 — The InfoPath Forms Services component in Microsoft SharePoint Server 2007 SP3 and 2010 SP2 misparses DTDs, which allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka "Microsoft SharePoint Information Disclosure Vulnerability." El componente InfoPath Forms Services en Microsoft SharePoint Server 2007 SP3 y 2010 SP2 no analiza correctamente la gramática de las DT... • http://www.securitytracker.com/id/1033804 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.0EPSS: 27%CPEs: 4EXPL: 0CVE-2015-1700
https://notcve.org/view.php?id=CVE-2015-1700
13 May 2015 — Microsoft SharePoint Server 2007 SP3, SharePoint Foundation 2010 SP2, SharePoint Server 2010 SP2, and SharePoint Foundation 2013 SP1 allow remote authenticated users to execute arbitrary code via crafted page content, aka "Microsoft SharePoint Page Content Vulnerabilities." Microsoft SharePoint Server 2007 SP3, SharePoint Foundation 2010 SP2, SharePoint Server 2010 SP2, y SharePoint Foundation 2013 SP1 permiten a usuarios remotos autenticados ejecutar código arbitrario a través del contenido de páginas mani... • http://www.securitytracker.com/id/1032296 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 34%CPEs: 29EXPL: 0CVE-2015-0085 – Microsoft Word Format Tag Transposition Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-0085
11 Mar 2015 — Use-after-free vulnerability in Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 Gold and SP1, Word 2013 Gold and SP1, Office 2013 RT Gold and SP1, Word 2013 RT Gold and SP1, Excel Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Excel Services on SharePoint Server 2013 Gold and SP1, Word Automation Services on SharePoint Server 2013 Gold and SP1, Web A... • http://www.securitytracker.com/id/1031896 •
CVSS: 9.0EPSS: 15%CPEs: 24EXPL: 0CVE-2014-0251
https://notcve.org/view.php?id=CVE-2014-0251
14 May 2014 — Microsoft Windows SharePoint Services 3.0 SP3; SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 Gold and SP1; SharePoint Foundation 2010 SP1 and SP2 and 2013 Gold and SP1; Project Server 2010 SP1 and SP2 and 2013 Gold and SP1; Web Applications 2010 SP1 and SP2; Office Web Apps Server 2013 Gold and SP1; SharePoint Server 2013 Client Components SDK; and SharePoint Designer 2007 SP3, 2010 SP1 and SP2, and 2013 Gold and SP1 allow remote authenticated users to execute arbitrary code via crafted page conten... • http://www.securitytracker.com/id/1030227 • CWE-94: Improper Control of Generation of Code ('Code Injection') •