Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting (XSS) vulnerability by sending a specially crafted request to an affected SharePoint server, due to how SharePoint Server sanitizes web requests, aka "Microsoft Office SharePoint XSS Vulnerability". This CVE ID is unique from CVE-2017-11775 and CVE-2017-11777.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: microsoft
Published: 2017-10-13T13:00:00Z
Updated: 2024-09-16T19:31:29.861Z
Reserved: 2017-07-31T00:00:00
Link: CVE-2017-11820
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-10-13T13:29:01.847
Modified: 2024-11-21T03:08:34.417
Link: CVE-2017-11820
Redhat
No data.