Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2014-4116
HistoryNov 11, 2014 - 10:55 p.m.

CVE-2014-4116

2014-11-1122:55:04
CWE-79
[email protected]
web.nvd.nist.gov
4

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.079

Percentile

94.3%

JSON

Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2010 SP2 allows remote authenticated users to inject arbitrary web script or HTML via a modified list, aka “SharePoint Elevation of Privilege Vulnerability.”

Affected configurations

Nvd
Node
microsoftsharepoint_foundationMatch2010sp2
VendorProductVersionCPE
microsoftsharepoint_foundation2010cpe:2.3:a:microsoft:sharepoint_foundation:2010:sp2:*:*:*:*:*:*

Related

securityvulns 1
checkpoint_advisories 2
prion 1
cvelist 1
symantec 1
openvas 1
mskb 1
nessus 1
cve 1
kaspersky 1
securityvulns
securityvulns
Microsoft SharePoint Server crossite scripting
2014-11-18 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft SharePoint Active Scripting Elevation of Privilege (MS14-073; CVE-2014-4116)
2014-11-11 00:00:00
Cross-Site Scripting (CVE-2005-0543; CVE-2014-4075; CVE-2014-4116; CVE-2014-6325; CVE-2014-6365; CVE-2015-1636; CVE-2015-1640; CVE-2015-1757)
2015-06-09 00:00:00
prion
prion
Cross site scripting
2014-11-11 22:55:00
cvelist
cvelist
CVE-2014-4116
2014-11-11 22:00:00
symantec
symantec
Microsoft SharePoint Server CVE-2014-4116 Remote Privilege Escalation Vulnerability
2014-11-11 00:00:00
openvas
openvas
Microsoft SharePoint Foundation Privilege Elevation Vulnerability (3000431)
2014-11-12 00:00:00
mskb
mskb
MS14-073: Vulnerability in Microsoft SharePoint Foundation could allow for elevation of privilege: November 11, 2014
2014-11-11 00:00:00
nessus
nessus
MS14-073: Vulnerability in Microsoft SharePoint Foundation Could Allow Elevation of Privilege (3000431)
2014-11-12 00:00:00
cve
cve
CVE-2014-4116
2014-11-11 22:55:04
kaspersky
kaspersky
KLA10604 Multiple vulnerabilities in Microsoft SharePoint
2014-11-11 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.079

Percentile

94.3%

JSON
Related for NVD:CVE-2014-4116
securityvulns1checkpoint_advisories2prion1cvelist1symantec1openvas1mskb1nessus1cve1kaspersky1