← back
CVE-2019-0558

CVE-2019-0558

CVSS 5.4 MEDIUMEPSS 2.0%CWE-79
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoint, Microsoft Business Productivity Servers. This CVE ID is unique from CVE-2019-0556, CVE-2019-0557.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Affected products
Microsoft · Microsoft Business Productivity ServersMicrosoft · Microsoft SharePointMicrosoft · Microsoft SharePoint Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0558http://www.securityfocus.com/bid/106389