Lucene search
HistoryAug 12, 2014 - 9:55 p.m.
CVE-2014-2816
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
Low
EPSS
0.013
Percentile
86.1%
Microsoft SharePoint Server 2013 Gold and SP1 and SharePoint Foundation 2013 Gold and SP1 allow remote authenticated users to gain privileges via a Trojan horse app that executes a custom action in the context of the SharePoint extensibility model, aka “SharePoint Page Content Vulnerability.”
Affected configurations
Node
microsoftsharepoint_foundationMatch2013--gold
ORmicrosoftsharepoint_foundationMatch2013sp1
ORmicrosoftsharepoint_serverMatch2013--gold
ORmicrosoftsharepoint_serverMatch2013sp1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | sharepoint_foundation | 2013 | cpe:2.3:a:microsoft:sharepoint_foundation:2013:-:-:*:gold:*:*:* |
| microsoft | sharepoint_foundation | 2013 | cpe:2.3:a:microsoft:sharepoint_foundation:2013:sp1:*:*:*:*:*:* |
| microsoft | sharepoint_server | 2013 | cpe:2.3:a:microsoft:sharepoint_server:2013:-:-:*:gold:*:*:* |
| microsoft | sharepoint_server | 2013 | cpe:2.3:a:microsoft:sharepoint_server:2013:sp1:*:*:*:*:*:* |
Related
prion
prion
Code injection
2014-08-12 21:55:00
cve
cve
CVE-2014-2816
2014-08-12 21:55:06
openvas
openvas
mskb
mskb
symantec
symantec
nessus
nessus
securityvulns
securityvulns
Microsoft SharePoint Server privilege escalation
2014-09-15 00:00:00
cvelist
cvelist
CVE-2014-2816
2014-08-12 21:00:00
kaspersky
kaspersky
KLA10604 Multiple vulnerabilities in Microsoft SharePoint
2014-11-11 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
Low
EPSS
0.013
Percentile
86.1%
Related for NVD:CVE-2014-2816