CVE-2018-0789

EUVD-2018-1595
Microsoft SharePoint Foundation 2010, Microsoft SharePoint Server 2013 and Microsoft SharePoint Server 2016 allow an elevation of privilege vulnerability due to the way web requests are handled, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0790.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
References
http://www.securityfocus.com/bid/102394
http://www.securitytracker.com/id/1040150
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0789
http://www.securityfocus.com/bid/102394
http://www.securitytracker.com/id/1040150
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0789