Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
2025-06-10T17:23:38.753
2025-07-09T14:02:40.430
Analyzed
CVSSv3.1: 8.8 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | microsoft | sharepoint_enterprise_server | 2016 | Yes |
| Application | microsoft | sharepoint_server | < 16.0.18526.20396 | Yes |
| Application | microsoft | sharepoint_server | 2019 | Yes |