The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-0950, CVE-2019-0951.
Base Score: 3.5
Impact Score: 2.9
Exploitability Score: 6.8
Base Score: 5.7
Impact Score: 3.6
Exploitability Score: 2.1
|112345||Microsoft SharePoint Server 2019 build < 16.0.10345.12101 Multiple Vulnerabilities||Web Application Scanning||Component Vulnerability|
|112344||Microsoft SharePoint Server 2016 build < 16.0.4849.1000 Multiple Vulnerabilities||Web Application Scanning||Component Vulnerability|
|125227||Security Updates for Microsoft SharePoint Server (May 2019)||Nessus||Windows : Microsoft Bulletins|