Sharepoint Enterprise Server
by Microsoft
Take action — actively targeted
Sharepoint Enterprise Server is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
30.9%
Confirmed actively exploited (CISA)
2.0%
Public exploit code available
0.0%
Based on 256 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2019-0604 | 9.8 | 94.4% | Yes |
| CVE-2020-1147 | 7.8 | 93.4% | Yes |
| CVE-2023-24955 | 7.2 | 91.6% | Yes |
| CVE-2023-21716 | 9.8 | 91.4% | — |
| CVE-2017-11826 | 7.8 | 90.8% | Yes |
| CVE-2020-16952 | 8.6 | 75.1% | — |
| CVE-2025-49706 | 6.5 | 71.6% | Yes |
| CVE-2020-1181 | 8.8 | 52.6% | — |
| CVE-2020-1102 | 8.8 | 46.2% | — |
| CVE-2020-1447 | 8.8 | 46.0% | — |
| CVE-2021-31181 | 8.8 | 40.7% | — |
| CVE-2020-0980 | 7.8 | 40.2% | — |
| CVE-2020-0892 | 7.8 | 40.2% | — |
| CVE-2020-1446 | 8.8 | 39.9% | — |
| CVE-2020-1448 | 8.8 | 39.3% | — |
| CVE-2022-38053 | 8.8 | 39.2% | — |
| CVE-2022-35823 | 8.8 | 38.4% | — |
| CVE-2019-1295 | 8.8 | 37.4% | — |
| CVE-2019-1296 | 8.8 | 37.4% | — |
| CVE-2017-8742 | 7.8 | 36.5% | — |
51
/ 100
high-risk
Active Threat
50/50 · Critical
Exploit Availability
1/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.