CVE-2019-1330Microsoft Sharepoint Enterprise Server vulnerability

4 documents4 sources
Severity
6.5MEDIUMNVD
CNA5.4
EPSS
10.7%
top 6.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Microsoft Sharepoint Enterprise ServerMicrosoft Sharepoint FoundationMicrosoft Sharepoint Server+2 more
Timeline
PublishedOct 10
Latest updateMay 24

Description

An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1329.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages5 packages

CVEListV5microsoft/microsoft_sharepoint_foundation2013 Service Pack 1

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-xxxf-8fjp-59qv: An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'2022-05-24
CVEList
CVE-2019-1330: An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'2019-10-10

📋Vendor Advisories

1
Microsoft
Microsoft SharePoint Elevation of Privilege Vulnerability2019-10-08
CVE-2019-1330 — Microsoft vulnerability | cvebase