CVE-2014-1813

EUVD-2014-1887
Microsoft Web Applications 2010 SP1 and SP2 allows remote authenticated users to execute arbitrary code via crafted page content, aka "Web Applications Page Content Vulnerability."
Code Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:C/I:C/A:C
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Common Weakness Enumeration
References
http://www.securitytracker.com/id/1030227
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-022
http://www.securitytracker.com/id/1030227
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-022