vulnerability

Microsoft SharePoint: CVE-2020-0891: Microsoft SharePoint Reflective XSS Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:S/C:N/I:P/A:N)	2020-03-12	2023-05-15	2023-05-15

Severity

CVSS

(AV:N/AC:M/Au:S/C:N/I:P/A:N)

Published

2020-03-12

Added

2023-05-15

Modified

2023-05-15

Description

This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server.An authenticated attacker could exploit this vulnerability by sending a specially crafted request to an affected SharePoint server, aka 'Microsoft SharePoint Reflective XSS Vulnerability'. This CVE ID is unique from CVE-2020-0795.

Solution(s)

microsoft-sharepoint-sharepoint_2016-kb4484272microsoft-sharepoint-sharepoint_2019-kb4484271

References

CVE-2020-0891
https://attackerkb.com/topics/CVE-2020-0891
URL-https://support.microsoft.com/help/4484271
URL-https://support.microsoft.com/help/4484272

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today