CVE-2021-3452014.07.2021, 18:15Microsoft SharePoint Server Remote Code Execution VulnerabilityEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST8.1 HIGHNETWORKLOWLOWCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NmicrosoftCNA8.1 HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:CCVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 89%Common Weakness EnumerationCWE-502 - Deserialization of Untrusted DataThe application deserializes untrusted data without sufficiently verifying that the resulting data will be valid.Referenceshttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34520https://www.zerodayinitiative.com/advisories/ZDI-21-828/https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34520https://www.zerodayinitiative.com/advisories/ZDI-21-828/