CVE-2021-2847411.05.2021, 19:15Microsoft SharePoint Server Remote Code Execution VulnerabilityEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST8.8 HIGHNETWORKLOWLOWCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HmicrosoftCNA8.8 HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:CCVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 94%Common Weakness EnumerationCWE-436 - Interpretation ConflictProduct A handles inputs or steps differently than Product B, which causes A to perform incorrect actions based on its perception of B's state.Referenceshttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28474https://www.zerodayinitiative.com/advisories/ZDI-21-574/https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28474https://www.zerodayinitiative.com/advisories/ZDI-21-574/