Skip to main content
CVE-2013-0081 MEDIUM This Month

Microsoft SharePoint Portal Server 2003 SP3 and SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 do not properly process unassigned workflows, which allows remote attackers to cause a denial of. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 78.4% and no vendor patch available.

Denial Of Service Microsoft Sharepoint Foundation Sharepoint Portal Server Sharepoint Server +1
NVD
CVSS 2.0
5.0
EPSS
78.4%
CVE-2013-3180 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2010 SP1 and SP2 and 2013 allows remote attackers to inject arbitrary web script or HTML via a crafted POST request, aka "POST. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 62.1% and no vendor patch available.

Microsoft XSS Sharepoint Foundation Sharepoint Server
NVD
CVSS 2.0
4.3
EPSS
62.1%
CVE-2013-3868 MEDIUM This Month

Microsoft Active Directory Lightweight Directory Service (AD LDS) on Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows 8 and Active Directory Services on Windows. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 36.4% and no vendor patch available.

Denial Of Service Microsoft Active Directory Lightweight Directory Service Windows Server 2008 Windows 8 +3
NVD
CVSS 2.0
5.0
EPSS
36.4%
CVE-2013-3160 MEDIUM This Month

Microsoft Office 2003 SP3 and 2007 SP3, Word 2003 SP3 and 2007 SP3, and Word Viewer allow remote attackers to read arbitrary files via an XML document containing an external entity declaration in. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 27.6% and no vendor patch available.

Information Disclosure XXE Microsoft Office Word +1
NVD
CVSS 2.0
5.0
EPSS
27.6%
CVE-2013-3179 MEDIUM POC THREAT This Month

Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 allows remote attackers to inject arbitrary web script or HTML via a crafted request, aka. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 10.6%.

Microsoft XSS Sharepoint Foundation Sharepoint Server Sharepoint Services
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
10.6%
CVE-2013-3159 MEDIUM This Month

Microsoft Excel 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Excel Viewer; and Microsoft Office Compatibility Pack SP3 allow remote attackers to read arbitrary files via an XML document containing an. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 25.4% and no vendor patch available.

XXE Microsoft Excel
NVD
CVSS 2.0
4.3
EPSS
25.4%
CVE-2013-3137 MEDIUM This Month

Microsoft FrontPage 2003 SP3 does not properly parse DTDs, which allows remote attackers to obtain sensitive information via crafted XML data in a FrontPage document, aka "XML Disclosure. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 13.7% and no vendor patch available.

Information Disclosure Microsoft Frontpage
NVD
CVSS 2.0
4.3
EPSS
13.7%
CVE-2013-3862 MEDIUM This Month

Double free vulnerability in Microsoft Windows 7 and Server 2008 R2 SP1 allows local users to gain privileges via a crafted service description that is not properly handled by services.exe in the. Rated medium severity (CVSS 6.9). No vendor patch available.

Information Disclosure Microsoft Windows 7 Windows Server 2008
NVD
CVSS 2.0
6.9
EPSS
0.5%
CVE-2013-3859 MEDIUM This Month

Microsoft Pinyin IME 2010, when used in conjunction with Microsoft Office 2010 SP1, does not properly restrict configuration options, which allows local users to gain privileges by starting Internet. Rated medium severity (CVSS 6.9). No vendor patch available.

Privilege Escalation Microsoft Office Pinyin Ime
NVD
CVSS 2.0
6.9
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy