Description

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoint, Microsoft Business Productivity Servers. This CVE ID is unique from CVE-2019-0556, CVE-2019-0557.

Remediation

References

CVE-2019-0558

Related Vulnerabilities

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-5270)

GlassFish CVE-2017-3626 Vulnerability (CVE-2017-3626)

MySQL CVE-2017-3648 Vulnerability (CVE-2017-3648)

MySQL CVE-2019-2691 Vulnerability (CVE-2019-2691)

WordPress Plugin BackupBuddy Multiple Vulnerabilities (8.0.1.8)

Severity

Medium

Classification

CVE-2019-0558 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities