CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-8580

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks (a variant of cross-site request forgery, CSRF), aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microsoft SharePoint.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.065

EPSS Ranking 90.6%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/106096
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8580
http://www.securityfocus.com/bid/106096
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8580

Products affected by CVE-2018-8580

Microsoft » Sharepoint Server » Version: 2010

cpe:2.3:a:microsoft:sharepoint_server:2010
Microsoft » Sharepoint Server » Version: 2013

cpe:2.3:a:microsoft:sharepoint_server:2013
Microsoft » Sharepoint Server » Version: 2016

cpe:2.3:a:microsoft:sharepoint_server:2016

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-8580

Products

Pricing

Contact Us