Cjm00N

**Name of the Vulnerable Software and Affected Versions** Microsoft Office SharePoint Server (affected versions not specified) Microsoft SharePoint Server Subscription Edition (affected versions not specified) Microsoft SharePoint Enterprise Server (affected versions not specified) **Description** An improper authorization issue exists in Microsoft Office SharePoint. Exploitation may allow an authorized attacker to execute code over a network. The vulnerability allows remote attackers to execute arbitrary code and affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office SharePoint (affected versions not specified) Description: The issue is related to improper authorization, allowing an authorized attacker to execute code over a network. This enables remote attackers to execute arbitrary code and affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Azure Portal Windows Admin Center (affected versions not specified) Description: The issue allows an unauthorized attacker to disclose information locally due to external control of file name or path in Azure Portal Windows Admin Center. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server (affected versions not specified) Description: The issue concerns a remote code execution problem. It allows remote attackers to execute arbitrary code and affect the system. The vulnerability is related to improper authorization. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Dynamics 365 Business Central (affected versions not specified) Description: The issue is related to improper authorization in Dynamics 365 Business Central, allowing an authenticated attacker to elevate privileges over a network. This can be exploited by a remote attacker to gain higher privileges. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Dynamics 365 Business Central (affected versions not specified) **Description** The issue is related to deficiencies in the authentication procedure of Microsoft Dynamics 365 Business Central. Exploitation of this issue may allow a remote attacker to bypass the authentication process and elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft SharePoint Server (affected versions not specified) **Description** The issue is related to insufficient input sanitization in Microsoft SharePoint Server, allowing remote attackers to execute arbitrary code and affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft SharePoint Server (affected versions not specified) **Description** This issue involves flaws in the deserialization mechanism within Microsoft SharePoint Server. Successful exploitation could allow a remote attacker to execute arbitrary code by uploading a specially crafted file. The vulnerability requires authentication to exploit. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft SharePoint Server (affected versions not specified) Microsoft SharePoint Server Subscription Edition (affected versions not specified) Microsoft SharePoint Enterprise Server (affected versions not specified) **Description** The issue is related to the use of an unreliable path search in Microsoft SharePoint Server, allowing a remote attacker to execute arbitrary code using specially crafted files. This can affect the system. **Recommendations** For Microsoft SharePoint Server, consider restricting access to sensitive areas of the system until a fix is available. For Microsoft SharePoint Server Subscription Edition, restrict the use of potentially vulnerable modules to minimize the risk of exploitation. For Microsoft SharePoint Enterprise Server, as a temporary workaround, consider disabling any features that may be using unreliable path searches until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.