This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:microsoft:sharepoint_server
Detail
VendorMicrosoftFirst view 2007-05-09
ProductSharepoint ServerLast view2018-07-10
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:microsoft:sharepoint_server:2010:sp263
cpe:/a:microsoft:sharepoint_server:2013:sp149
cpe:/a:microsoft:sharepoint_server:2010:sp133
cpe:/a:microsoft:sharepoint_server:2007:sp321
cpe:/a:microsoft:sharepoint_server:201618
Hide | Show 13 More...
CPE NameAffected CVE
cpe:/a:microsoft:sharepoint_server:201013
cpe:/a:microsoft:sharepoint_server:201310
cpe:/a:microsoft:sharepoint_server:2007:sp28
cpe:/a:microsoft:sharepoint_server:2007:sp2:x326
cpe:/a:microsoft:sharepoint_server:2007:sp2:x646
cpe:/a:microsoft:sharepoint_server:2013:-:~-~gold~~~6
cpe:/a:microsoft:sharepoint_server:20075
cpe:/a:microsoft:sharepoint_server:2007:sp14
cpe:/a:microsoft:sharepoint_server3
cpe:/a:microsoft:sharepoint_server:2.02
cpe:/a:microsoft:sharepoint_server:2007:sp1:x321
cpe:/a:microsoft:sharepoint_server:2007:sp1:x641
cpe:/a:microsoft:sharepoint_server:2007::gold1

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32018-07-10CVE-2018-8284NetworkMediumNone Requ...
3.52018-06-14CVE-2018-8254NetworkMediumRequires ...
3.52018-06-14CVE-2018-8252NetworkMediumRequires ...
3.52018-05-09CVE-2018-8168NetworkMediumRequires ...
9.32018-05-09CVE-2018-8161NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32018-05-09CVE-2018-8160NetworkMediumNone Requ...
3.52018-05-09CVE-2018-8156NetworkMediumRequires ...
3.52018-05-09CVE-2018-8155NetworkMediumRequires ...
3.52018-05-09CVE-2018-8149NetworkMediumRequires ...
9.32018-03-14CVE-2018-0922NetworkMediumNone Requ...
4.32018-03-14CVE-2018-0919NetworkMediumNone Requ...
3.52018-02-14CVE-2018-0864NetworkMediumRequires ...
9.32018-01-09CVE-2018-0797NetworkMediumNone Requ...
9.32018-01-09CVE-2018-0792NetworkMediumNone Requ...
92018-01-09CVE-2018-0789NetworkLowRequires ...
9.32017-10-13CVE-2017-11826NetworkMediumNone Requ...
9.32017-09-12CVE-2017-8743NetworkMediumNone Requ...
9.32017-09-12CVE-2017-8742NetworkMediumNone Requ...
3.52017-09-12CVE-2017-8629NetworkMediumRequires ...
3.52017-08-08CVE-2017-8654NetworkMediumRequires ...
6.52017-07-11CVE-2017-8569NetworkLowRequires ...
9.32017-07-11CVE-2017-8501NetworkMediumNone Requ...
3.52017-06-14CVE-2017-8514NetworkMediumRequires ...
9.32017-06-14CVE-2017-8513NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
32% (42)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
31% (41)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
7% (10)CWE-200Information Exposure
6% (9)CWE-20Improper Input Validation
5% (7)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 8 More...
%idName
3% (5)CWE-399Resource Management Errors
3% (4)CWE-125Out-of-bounds Read
3% (4)CWE-19Data Handling
2% (3)CWE-94Failure to Control Generation of Code ('Code Injection')
0% (1)CWE-284Access Control (Authorization) Issues
0% (1)CWE-254Security Features
0% (1)CWE-189Numeric Errors
0% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

SAINT Exploits

DescriptionLink
Microsoft Word RTF Object ConfusionMore info here
Microsoft SharePoint Office Document Load Balancer SOAP VulnerabilityMore info here

Open Source Vulnerability Database (OSVDB)

idDescription
75393Microsoft SharePoint Unspecified URI XSS
75392Microsoft SharePoint XML File Arbitrary File Disclosure
75390Microsoft SharePoint EditForm.aspx XSS
75389Microsoft SharePoint SharePoint Calendar URI XSS
75387Microsoft Office Excel Unspecified Signedness Error Excel File Handling Memor...
Hide | Show 14 More...
idDescription
75386Microsoft Office Excel Unspecified Conditional Expression Parsing Excel File ...
75381Microsoft SharePoint XML / XSL File Handling Unspecified Arbitrary File Discl...
69817Microsoft SharePoint Office Document Load Balancer Crafted SOAP Request Remot...
68548Microsoft IE / SharePoint Unspecified XSS
68123Microsoft IE / SharePoint toStaticHTML Function Crafted CSS @import Rule XSS ...
65211Microsoft IE / Sharepoint toStaticHTML Information Disclosure
64170Microsoft SharePoint Server _layouts/help.aspx cid0 Parameter XSS
59479Microsoft Office SharePoint Server Team Services _layouts/download.aspx Multi...
51922FAST ESP Management Interface Unspecified XSS
50279Microsoft XML Core Services HTTP Request Header Field Cross-domain Session St...
50138Microsoft SharePoint Host Name / Port Number Persistence HTML Document Same-o...
47407Microsoft Office Excel File COUNTRY Record Value Parsing Arbitrary Code Execu...
44459Microsoft Sharepoint Rich Text Editor Picture Source XSS
37630Microsoft SharePoint PATH_INFO (query string) XSS

ExploitDB Exploits

idDescription
32793MS14-017 Microsoft Word RTF Object Confusion
17873File disclosure via XEE in SharePoint 2007/2010 and DotNetNuke < 6

OpenVAS Exploits

idDescription
2012-10-10Name : Microsoft Office Word Remote Code Execution Vulnerabilities (2742319)
File : nvt/secpod_ms12-064.nasl
2012-10-10Name : Microsoft Products HTML Sanitisation Component XSS Vulnerability (2741517)
File : nvt/secpod_ms12-066.nasl
2012-07-11Name : Microsoft SharePoint Multiple Privilege Elevation Vulnerabilities (2695502)
File : nvt/secpod_ms12-050.nasl
2012-06-28Name : Microsoft SharePoint Privilege Elevation Vulnerabilities (2663841)
File : nvt/secpod_ms12-011.nasl
2011-09-22Name : Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities (2412048)
File : nvt/secpod_ms10-072.nasl
Hide | Show 13 More...
idDescription
2011-09-14Name : Microsoft SharePoint Server 2007 '_layouts/help.aspx' Cross Site Scripting Vu...
File : nvt/gb_sharepoint_39776.nasl
2011-09-14Name : Microsoft Office Excel Remote Code Execution Vulnerabilities (2587505)
File : nvt/secpod_ms11-072.nasl
2011-09-14Name : Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
File : nvt/secpod_ms11-074.nasl
2010-12-29Name : Microsoft SharePoint Could Allow Remote Code Execution Vulnerability (2455005)
File : nvt/secpod_ms10-104.nasl
2010-10-13Name : Microsoft Internet Explorer Multiple Vulnerabilities (2360131)
File : nvt/secpod_ms10-071.nasl
2010-09-23Name : Microsoft Internet Explorer 'toStaticHTML()' Cross Site Scripting Vulnerability
File : nvt/secpod_ms_ie_static_html_xss_vuln.nasl
2010-06-09Name : Microsoft Internet Explorer Multiple Vulnerabilities (982381)
File : nvt/secpod_ms10-035.nasl
2010-06-09Name : Microsoft SharePoint Privilege Elevation Vulnerabilities (2028554)
File : nvt/secpod_ms10-039.nasl
2010-05-04Name : Microsoft SharePoint '_layouts/help.aspx' Cross Site Scripting Vulnerability
File : nvt/secpod_ms_sharepoint_layouts_xss_vuln.nasl
2010-03-05Name : Microsoft SharePoint Cross Site Scripting Vulnerability
File : nvt/gb_ms_sharepoint_xss_vuln.nasl
2009-11-05Name : Microsoft SharePoint Team Services Information Disclosure Vulnerability
File : nvt/gb_ms_sharepoint_info_disc_vuln.nasl
2008-11-12Name : Microsoft XML Core Services Remote Code Execution Vulnerability (955218)
File : nvt/secpod_ms08-069_900058.nasl
2008-08-19Name : Microsoft Excel Could Allow Remote Code Execution Vulnerabilities (954066)
File : nvt/secpod_ms08-043_900028.nasl

Information Assurance Vulnerability Management (IAVM)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2015-A-0194Multiple Vulnerabilities in Microsoft Office (MS15-081)
Severity : Category II - VMSKEY : V0061307
2015-A-0163Multiple Vulnerabilities in Microsoft Office (MS15-070)
Severity : Category II - VMSKEY : V0061121
2015-A-0103Multiple Vulnerabilities in Microsoft Office Products (MS15-046)
Severity : Category II - VMSKEY : V0060643
2015-A-0104Microsoft SharePoint Remote Code Execution Vulnerability (MS15-047)
Severity : Category II - VMSKEY : V0060645
2015-A-0087Multiple Vulnerabilities in Microsoft Office SharePoint Server (MS15-036)
Severity : Category II - VMSKEY : V0059889
Hide | Show 20 More...
idDescription
2015-A-0090Multiple Vulnerabilities in Microsoft Office (MS15-033)
Severity : Category II - VMSKEY : V0059895
2015-A-0052Multiple Vulnerabilities in Microsoft Office (MS15-022)
Severity : Category II - VMSKEY : V0058999
2015-A-0037Multiple Remote Code Execution Vulnerabilities in Microsoft Office (MS15-012)
Severity : Category II - VMSKEY : V0058751
2014-A-0190Microsoft Word and Office Remote Code Execution Vulnerability (MS14-081)
Severity : Category II - VMSKEY : V0057701
2014-A-0125Microsoft Sharepoint Server Elevation of Privilege Vulnerability
Severity : Category II - VMSKEY : V0053799
2014-A-0074Multiple Vulnerabilities in Microsoft Office SharePoint Server
Severity : Category II - VMSKEY : V0050449
2014-A-0049Multiple Vulnerabilities in Microsoft Office
Severity : Category II - VMSKEY : V0048675
2014-A-0006Multiple Vulnerabilities in Microsoft Office and Web Apps
Severity : Category II - VMSKEY : V0043406
2013-B-0136Microsoft SharePoint Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0042583
2013-A-0231Multiple Vulnerabilities in Microsoft Exchange Server
Severity : Category I - VMSKEY : V0042592
2013-B-0114Multiple Vulnerabilities in Microsoft Office Excel
Severity : Category II - VMSKEY : V0040757
2013-B-0116Microsoft SharePoint Remote Code Execution Vulnerabilities
Severity : Category II - VMSKEY : V0040765
2013-A-0178Multiple Vulnerabilities in Microsoft Office
Severity : Category II - VMSKEY : V0040289
2013-A-0174Multiple Remote Code Execution Vulnerabilities in Microsoft SharePoint Server
Severity : Category II - VMSKEY : V0040292
2013-A-0171Multiple Remote Code Execution Vulnerabilities in Microsoft Excel
Severity : Category I - VMSKEY : V0040295
2013-A-0083Microsoft Office HTML Sanitization Privilege Escalation Vulnerability
Severity : Category II - VMSKEY : V0037613
2013-B-0027Microsoft OneNote Information Disclosure Vulnerability
Severity : Category II - VMSKEY : V0037411
2013-A-0004Multiple Vulnerabilities in Microsoft XML Core Services
Severity : Category I - VMSKEY : V0036444
2012-B-0017Multiple Elevation of Privilege Vulnerabilities in Microsoft SharePoint
Severity : Category II - VMSKEY : V0031349
2011-B-0115Multiple Vulnerabilities in Microsoft Office SharePoint
Severity : Category II - VMSKEY : V0030239

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2014-01-10script tag in URI - likely cross-site scripting attempt
RuleID : 7070 - Type : POLICY-OTHER - Revision : 22
2018-08-16Microsoft Office Excel fileVersion use-after-free attempt
RuleID : 47204 - Type : FILE-OFFICE - Revision : 1
2018-08-16Microsoft Office Excel fileVersion use-after-free attempt
RuleID : 47203 - Type : FILE-OFFICE - Revision : 1
2018-08-16Microsoft Office Excel fileVersion use-after-free attempt
RuleID : 47202 - Type : FILE-OFFICE - Revision : 1
2018-08-16Microsoft Office Excel fileVersion use-after-free attempt
RuleID : 47201 - Type : FILE-OFFICE - Revision : 1
Hide | Show 20 More...
DateDescription
2018-08-16Microsoft Office Excel fileVersion use-after-free attempt
RuleID : 47200 - Type : FILE-OFFICE - Revision : 1
2018-08-16Microsoft Office Excel fileVersion use-after-free attempt
RuleID : 47199 - Type : FILE-OFFICE - Revision : 1
2018-06-07Microsoft Outlook use-after-free vulnerability attempt
RuleID : 46602 - Type : FILE-OFFICE - Revision : 1
2018-06-07Microsoft Outlook use-after-free vulnerability attempt
RuleID : 46601 - Type : FILE-OFFICE - Revision : 1
2018-04-11Microsoft Office RTF listoverride memory corruption attempt
RuleID : 45880 - Type : FILE-OFFICE - Revision : 1
2018-04-11Microsoft Office RTF listoverride memory corruption attempt
RuleID : 45879 - Type : FILE-OFFICE - Revision : 1
2018-02-22toStaticHTML CSS import XSS exploit attempt
RuleID : 45514 - Type : BROWSER-IE - Revision : 1
2018-02-08Microsoft Word memory corruption exploit attempt
RuleID : 45403 - Type : FILE-OFFICE - Revision : 1
2018-02-08Microsoft Word memory corruption exploit attempt
RuleID : 45402 - Type : FILE-OFFICE - Revision : 1
2017-11-16Microsoft Office Word docx object type confusion attempt
RuleID : 44586 - Type : FILE-OFFICE - Revision : 2
2017-11-16Microsoft Office Word docx object type confusion attempt
RuleID : 44585 - Type : FILE-OFFICE - Revision : 2
2017-10-17Microsoft Office RTF hex encoded WRAssembly ASLR bypass download attempt
RuleID : 44364 - Type : FILE-OFFICE - Revision : 2
2017-10-17Microsoft Office RTF hex encoded WRAsembly ASLR bypass download attempt
RuleID : 44363 - Type : FILE-OFFICE - Revision : 2
2017-07-11Microsoft Office Word 2016 use after free attempt
RuleID : 43160 - Type : FILE-OFFICE - Revision : 5
2017-07-11Microsoft Office Word 2016 use after free attempt
RuleID : 43159 - Type : FILE-OFFICE - Revision : 5
2017-04-14Microsoft Office Word out of bounds read attempt
RuleID : 41982 - Type : FILE-OFFICE - Revision : 3
2017-04-14Microsoft Office Word out of bounds read attempt
RuleID : 41981 - Type : FILE-OFFICE - Revision : 3
2017-04-12Microsoft Office Excel shared strings memory corruption attempt
RuleID : 41980 - Type : FILE-OFFICE - Revision : 3
2017-04-12Microsoft Office Excel shared strings memory corruption attempt
RuleID : 41979 - Type : FILE-OFFICE - Revision : 3
2017-04-12Microsoft Office Excel shared strings memory corruption attempt
RuleID : 41977 - Type : FILE-OFFICE - Revision : 3

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2018-03-13Name : An application installed on the remote macOS or Mac OS X host is affected by ...
File : macos_ms18_mar_office.nasl - Type : ACT_GATHER_INFO
2018-01-19Name : An application installed on the remote macOS or Mac OS X host is affected by ...
File : macos_ms18_jan_office.nasl - Type : ACT_GATHER_INFO
2017-10-11Name : The Microsoft Office Products are affected by multiple vulnerabilities.
File : smb_nt_ms17_oct_office.nasl - Type : ACT_GATHER_INFO
2017-10-11Name : The Microsoft Sharepoint Server installation on the remote host is affected b...
File : smb_nt_ms17_oct_office_sharepoint.nasl - Type : ACT_GATHER_INFO
2017-10-11Name : An application installed on the remote Windows host is affected by multiple r...
File : smb_nt_ms17_oct_office_web.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2017-10-10Name : Microsoft Office Compatibility Pack SP3 is affected by a remote code executio...
File : smb_nt_ms17_oct_office_compatibility.nasl - Type : ACT_GATHER_INFO
2017-10-10Name : The Microsoft Office Products are missing a security update.
File : smb_nt_ms17_oct_word_viewer.nasl - Type : ACT_GATHER_INFO
2017-09-13Name : An application installed on the remote Windows host is affected by multiple r...
File : smb_nt_ms17_sep_office_web.nasl - Type : ACT_GATHER_INFO
2017-09-12Name : The Microsoft Office Products are affected by multiple vulnerabilities.
File : smb_nt_ms17_sep_office.nasl - Type : ACT_GATHER_INFO
2017-09-12Name : Microsoft Office Compatibility Pack SP3 is affected by multiple vulnerabilities.
File : smb_nt_ms17_sep_office_compatibility.nasl - Type : ACT_GATHER_INFO
2017-09-12Name : The Microsoft Sharepoint Server installation on the remote host is affected b...
File : smb_nt_ms17_sep_office_sharepoint.nasl - Type : ACT_GATHER_INFO
2017-09-12Name : The Microsoft Office Products are affected by multiple vulnerabilities.
File : smb_nt_ms17_sep_office_viewers.nasl - Type : ACT_GATHER_INFO
2017-09-12Name : The Microsoft Powerpoint Products are affected by multiple vulnerabilities.
File : smb_nt_ms17_sep_powerpoint.nasl - Type : ACT_GATHER_INFO
2017-08-08Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_aug_office_sharepoint.nasl - Type : ACT_GATHER_INFO
2017-07-11Name : An application installed on the remote macOS or Mac OS X host is affected by ...
File : macosx_ms17_july_office.nasl - Type : ACT_GATHER_INFO
2017-07-11Name : An application installed on the remote Windows host is affected by multiple r...
File : smb_nt_ms17_jul_office.nasl - Type : ACT_GATHER_INFO
2017-07-11Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_jul_office_sharepoint.nasl - Type : ACT_GATHER_INFO
2017-07-11Name : An application installed on the remote Windows host is affected by multiple r...
File : smb_nt_ms17_jul_office_web.nasl - Type : ACT_GATHER_INFO
2017-06-14Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_jun_office.nasl - Type : ACT_GATHER_INFO
2017-06-14Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_jun_office_sharepoint.nasl - Type : ACT_GATHER_INFO
2017-06-14Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_jun_office_web.nasl - Type : ACT_GATHER_INFO
2017-06-13Name : An application installed on the remote macOS or Mac OS X host is affected by ...
File : macosx_ms17_june_office.nasl - Type : ACT_GATHER_INFO
2017-05-19Name : An application installed on the remote macOS or Mac OS X host is affected by ...
File : macosx_ms17_may_office.nasl - Type : ACT_GATHER_INFO
2017-05-10Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_may_office.nasl - Type : ACT_GATHER_INFO
2017-04-12Name : An application installed on the remote Windows host is affected by multiple v...
File : smb_nt_ms17_apr_office.nasl - Type : ACT_GATHER_INFO