CVE-2018-8578

Опубликовано: 14 нояб. 2018

Источник: nvd

CVSS3: 4.3

CVSS2: 4

EPSS Низкий

Описание

An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when rendering specific web pages, aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microsoft SharePoint.

Ссылки

http://www.securityfocus.com/bid/105832
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1042133
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8578
Patch
Vendor Advisory
http://www.securityfocus.com/bid/105832
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1042133
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8578
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:sharepoint_enterprise_server:2013:sp1:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04306

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2018-8578

msrc

около 7 лет назад

Microsoft SharePoint Information Disclosure Vulnerability

GHSA-xj2f-r9jm-5w6p

CVSS3: 4.3

github

больше 3 лет назад

BDU:2019-00410

CVSS3: 7.5

fstec