QID 110377

Date Published: 2021-04-14

QID 110377: Microsoft SharePoint Enterprise Server Multiple Vulnerabilities April 2021

Microsoft has released April 2021 security updates to fix multiple security vulnerabilities.

This security update contains the following KBs:

KB4504709
KB4504716
KB4493170
KB4504719
KB4504701
KB4504715
KB4493201
KB4504723

QID Detection Logic:
This authenticated QID checks the file versions from the above Microsoft KB article with the versions on the affected SharePoint system.

Successful exploitation allows an attacker to execute code remotely.

CVSS V3 rated as High - 7.3 severity.

CVSS V2 rated as High - 6.8 severity.

Solution

Refer to Microsoft Security Guidance for more details pertaining to this vulnerability.

Vendor References

KB4493170 - support.microsoft.com/kb/4493170
KB4493201 - support.microsoft.com/kb/4493201
KB4504701 - support.microsoft.com/kb/4504701
KB4504709 - support.microsoft.com/kb/4504709
KB4504715 - support.microsoft.com/kb/4504715
KB4504716 - support.microsoft.com/kb/4504716
KB4504719 - support.microsoft.com/kb/4504719
KB4504723 - support.microsoft.com/kb/4504723

CVEs related to QID 110377

CVE-2021-28450 | CVE-2021-28453 |

Software Advisories

Advisory ID	Software	Component	Link
Microsoft Office and Microsoft Office Services and Web Apps Security Update April 2021			msrc.microsoft.com/update-guide/en-us

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].