Lucene search
MicrosoftCVELIST:CVE-2017-11820HistoryOct 10, 2017 - 12:00 a.m.
CVE-2017-11820
2017-10-1000:00:00
microsoft
www.cve.org
Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting (XSS) vulnerability by sending a specially crafted request to an affected SharePoint server, due to how SharePoint Server sanitizes web requests, aka “Microsoft Office SharePoint XSS Vulnerability”. This CVE ID is unique from CVE-2017-11775 and CVE-2017-11777.
CNA Affected
[
{
"product": "Microsoft SharePoint Enterprise Server",
"vendor": "Microsoft Corporation",
"versions": [
{
"status": "affected",
"version": "Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016"
}
]
}
]Related
prion
prion
Cross site scripting
2017-10-13 13:29:00
Cross site scripting
2017-10-13 13:29:00
Cross site scripting
2017-10-13 13:29:00
nvd
nvd
cvelist
cvelist
CVE-2017-11775
2017-10-10 00:00:00
CVE-2017-11777
2017-10-10 00:00:00
cve
cve
mskb
mskb
nessus
nessus
Security Updates for Microsoft Sharepoint Server (October 2017)
2017-10-11 00:00:00
openvas
openvas
kaspersky
kaspersky
KLA11113 Multiple vulnerabilities in Microsoft Office
2017-10-10 00:00:00
symantec
symantec
mscve
mscve
Microsoft SharePoint Elevation of Privilege Vulnerability
2017-10-10 07:00:00
Microsoft SharePoint Elevation of Privilege Vulnerability
2017-10-10 07:00:00
Microsoft SharePoint Elevation of Privilege Vulnerability
2017-10-10 07:00:00
threatpost
threatpost
Microsoft Patches Office Bug Actively Being Exploited
2017-10-10 16:44:08
myhack58
myhack58
thn
thn
trendmicroblog
trendmicroblog
talosblog
talosblog
Microsoft Patch Tuesday - October 2017
2017-10-10 13:25:00