Lucene search
MicrosoftCVELIST:CVE-2018-8580HistoryDec 12, 2018 - 12:00 a.m.
CVE-2018-8580
2018-12-1200:00:00
microsoft
www.cve.org
1
An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks (a variant of cross-site request forgery, CSRF), aka “Microsoft SharePoint Information Disclosure Vulnerability.” This affects Microsoft SharePoint.
CNA Affected
[
{
"product": "Microsoft SharePoint",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Enterprise Server 2013 Service Pack 1"
},
{
"status": "affected",
"version": "Enterprise Server 2016"
},
{
"status": "affected",
"version": "Foundation 2010 Service Pack 2"
}
]
}
]Related
mscve
mscve
Microsoft SharePoint Information Disclosure Vulnerability
2018-12-11 08:00:00
cve
cve
CVE-2018-8580
2018-12-12 00:29:00
symantec
symantec
mskb
mskb
nvd
nvd
CVE-2018-8580
2018-12-12 00:29:00
prion
prion
Information disclosure
2018-12-12 00:29:00
nessus
nessus
Security Updates for Microsoft Sharepoint Server (December 2018)
2018-12-14 00:00:00
kaspersky
kaspersky
KLA11386 Multiple vulnerabilities in Microsoft Office
2018-12-11 00:00:00
talosblog
talosblog