Security
Headlines
HeadlinesLatestCVEs

Tag

#Security Vulnerability

CVE-2021-40487: Microsoft SharePoint Server Remote Code Execution Vulnerability

*What is the attack vector for this vulnerability?* In a network-based attack, an authenticated attacker can gain access to create a site and could execute code remotely within the SharePoint Server.

Microsoft Security Response Center
#Microsoft Office SharePoint#Security Vulnerability#vulnerability#microsoft
CVE-2021-40482: Microsoft SharePoint Server Information Disclosure Vulnerability

*What kind of information can be disclosed?* An attacker can gain access to an organizational's email, sites, filename, url of file...

CVE-2021-40472: Microsoft Excel Information Disclosure Vulnerability

*What type of information could be disclosed by this vulnerability?* The type of information that could be disclosed if an attacker successfully exploited this vulnerability is uninitialized memory.