Vulnerability in Microsoft Business Productivity Servers
CVE-2019-0558
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability." This affec…
EPSS: 0.013 (80.0th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Business Productivity Servers — versions 2010 Service Pack 2
- Microsoft Sharepoint — versions Enterprise Server 2013 Service Pack 1, Enterprise Server 2016
- Microsoft Sharepoint Server — versions 2019
References
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0558 (x_refsource_CONFIRM)
- 106389 (vdb-entry, x_refsource_BID)