vulnerability

Microsoft CVE-2020-1297: Microsoft Office SharePoint XSS Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:N/AC:M/Au:S/C:N/I:P/A:N)	2020-06-09	2020-06-09	2023-02-27

Severity

CVSS

(AV:N/AC:M/Au:S/C:N/I:P/A:N)

Published

2020-06-09

Added

2020-06-09

Modified

2023-02-27

Description

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-1177, CVE-2020-1183, CVE-2020-1298, CVE-2020-1318, CVE-2020-1320.

Solution(s)

msft-kb4484391-cab991f5-8300-4438-9cb6-0ef750c90d9emsft-kb4484409-038ae95b-3b1d-4d0c-8e2e-a570e7a48669

References

CVE-2020-1297
https://attackerkb.com/topics/CVE-2020-1297
MSKB-4484391
MSKB-4484400
MSKB-4484402
MSKB-4484409

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today