Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting (XSS) vulnerability by sending a specially crafted request to an affected SharePoint server, due to how SharePoint Server sanitizes web requests, aka "Microsoft Office SharePoint XSS Vulnerability". This CVE ID is unique from CVE-2017-11775 and CVE-2017-11777.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2017-10-13T13:00:00Z

Updated: 2024-09-16T19:31:29.861Z

Reserved: 2017-07-31T00:00:00

Link: CVE-2017-11820

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-10-13T13:29:01.847

Modified: 2024-11-21T03:08:34.417

Link: CVE-2017-11820

cve-icon Redhat

No data.