Medium severity5.4NVD Advisory· Published Feb 15, 2018· Updated Jun 17, 2026

CVE-2018-0864

Description

SharePoint Project Server 2013 and SharePoint Enterprise Server 2016 allow an information disclosure vulnerability due to how web requests are handled, aka "Microsoft SharePoint Information Disclosure Vulnerability".

Affected products

Microsoft/SharePoint Project Serverllm-create
Range: = 2013
Microsoft/SharePoint Enterprise Server 2016llm-fuzzy
Range: = 2016

Patches

Vulnerability mechanics

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0864nvdPatchVendor Advisory
www.securityfocus.com/bid/102962nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1040376nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.351
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000