CVE-2021-2847811.05.2021, 19:15Microsoft SharePoint Server Spoofing VulnerabilityEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST7.6 HIGHNETWORKLOWLOWCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:NmicrosoftCNA7.6 HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N/E:U/RL:O/RC:CCVEADP------CISA-ADPADP------Awaiting analysisThis vulnerability is currently awaiting analysis.Base ScoreCVSS 3.xEPSS ScorePercentile: 85%Common Weakness EnumerationCWE-290 - Authentication Bypass by SpoofingThis attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.Referenceshttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28478https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28478