sharepoint enterprise server · threatengine.sh

Home/Product/microsoft sharepoint enterprise server

Product

microsoft sharepoint enterprise server

256 known vulnerabilities across versions

Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.

Sort Min CVSS Published since

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

Buffer over-read in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

Incorrect conversion between numeric types in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.

Deserialization of untrusted data in Microsoft Office allows an unauthorized attacker to elevate privileges locally.

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an auth

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Information Disclosure Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Elevation of Privilege Vulnerability

Microsoft Word Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft Word Information Disclosure Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft Word Remote Code Execution Vulnerability

Microsoft Word Information Disclosure Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Security Feature Bypass Vulnerability

Microsoft Word Remote Code Execution Vulnerability

Microsoft Office Remote Code Execution Vulnerability

Microsoft SharePoint Elevation of Privilege Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft Word Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Remote Code Execution Vulnerability

Microsoft SharePoint Server Information Disclosure Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Information Disclosure Vulnerability

Microsoft SharePoint Remote Code Execution Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Elevation of Privilege Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft Word Remote Code Execution Vulnerability

Microsoft Word Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability

Microsoft SharePoint Elevation of Privilege Vulnerability

Microsoft SharePoint Server Remote Code Execution Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Information Disclosure Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Server Spoofing Vulnerability

Microsoft SharePoint Information Disclosure Vulnerability

<p>An information disclosure vulnerability exists when Microsoft SharePoint Server fails to properly handle objects in memory. An

<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an a

<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an a

<p>An information disclosure vulnerability exists when Microsoft SharePoint Server fails to properly handle objects in memory. An

<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially craft

<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially craft

<p>This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected Share

<p>An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when

<p>An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when

<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in

<p>A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data inpu

<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an a

<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially craft

<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially craft

<p>A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsaf

<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an a

<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an a

<p>A tampering vulnerability exists when Microsoft SharePoint Server fails to properly handle profile data. An attacker who succes

<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially craft

<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially craft

<p>An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacke

<p>A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An

<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an a

<p>A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to

<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an a

<p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially craft

An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker wh

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

An information disclosure vulnerability exists when Microsoft SharePoint Server fails to properly handle objects in memory. An att

An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker wh

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoi

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'M

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'M

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'M

An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka 'Microso

A remote code execution vulnerability exists in the way Microsoft SharePoint software parses specially crafted email messages, aka

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check t

An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized va

A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to

An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OA

An open redirect vulnerability exists in Microsoft SharePoint that could lead to spoofing.To exploit the vulnerability, an attacke

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerabi

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe A

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted aut

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulne

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe A

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'M

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'M

This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoi

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'M

This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoi

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsof

An information disclosure vulnerability exists in Microsoft SharePoint when an attacker uploads a specially crafted file to the Sh

An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerabi

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input,

A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input,

A spoofing vulnerability exists in Microsoft SharePoint when it improperly handles requests to authorize applications, resulting i

An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerabi

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

An information disclosure vulnerability exists in the way Microsoft SharePoint handles session objects. An authenticated attacker

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An att

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), all

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An att

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An information disclosure vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe A

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

A spoofing vulnerability exists in Microsoft SharePoint when the application does not properly parse HTTP content, aka 'Microsoft

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted aut

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects i

An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when ren

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an appl

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka ".NET Framewo

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded font

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web

Microsoft SharePoint Foundation 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerabi

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability t

Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web reques

Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office

Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web reques

Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office

Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web reques

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to

Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to

SharePoint Server 2016 allows an elevation of privilege vulnerability due to how web requests are handled, aka "Microsoft SharePoi

Microsoft Access in Microsoft SharePoint Enterprise Server 2013 and Microsoft SharePoint Enterprise Server 2016 allows a cross-sit

Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allow a remote code execution vulnerability due to the way

Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of

Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of

Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability due to the way web requests are handled

Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read conte

Microsoft Office 2010, SharePoint Enterprise Server 2010, SharePoint Server 2010, Web Applications, Office Web Apps Server 2010 an

Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cro

Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cro

Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cro

A remote code execution vulnerability exists in Microsoft PowerPoint 2007 Service Pack 3, Microsoft PowerPoint 2010 Service Pack 2

An information disclosure vulnerability exists when Microsoft SharePoint software fails to properly sanitize a specially crafted r

A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka

Microsoft Word 2016 and SharePoint Enterprise Server 2016 allow remote attackers to execute arbitrary code via a crafted document,

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin