Microsoft SharePoint Enterprise Server 2016 allows an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0909, CVE-2018-0910. CVE-2018-0911, CVE-2018-0912, CVE-2018-0913 CVE-2018-0914, CVE-2018-0915, CVE-2018-0916, CVE-2018-0921, CVE-2018-0923, CVE-2018-0944 and CVE-2018-0947.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0917 | Patch Vendor Advisory |
http://www.securitytracker.com/id/1040513 | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/103296 | Third Party Advisory VDB Entry |
Configurations
Information
Published : 2018-03-14 10:29
Updated : 2019-10-02 17:03
NVD link : CVE-2018-0917
Mitre link : CVE-2018-0917
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
microsoft
- sharepoint_enterprise_server