vulnerability

Microsoft CVE-2020-0925: Microsoft Office SharePoint XSS Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:N/AC:M/Au:S/C:N/I:P/A:N)	Apr 14, 2020	Apr 14, 2020	Feb 27, 2023

Severity

CVSS

(AV:N/AC:M/Au:S/C:N/I:P/A:N)

Published

Apr 14, 2020

Added

Apr 14, 2020

Modified

Feb 27, 2023

Description

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-0923, CVE-2020-0924, CVE-2020-0926, CVE-2020-0927, CVE-2020-0930, CVE-2020-0933, CVE-2020-0954, CVE-2020-0973, CVE-2020-0978.

Solutions

msft-kb4484298-36b3810c-2d0d-46b9-b429-03b1d8166799msft-kb4484321-c367a7d7-355c-4c6c-86df-17190f6bda7b

References

CVE-2020-0925
https://attackerkb.com/topics/CVE-2020-0925
MSKB-4484292
MSKB-4484298
MSKB-4484299
MSKB-4484321

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report