Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News
Sign In Sign Up

CVE-2020-0925

UNKNOWN
Published 2020-04-15T15:12:49.000Z
Actions:

CVSS Score

V3.1
5.4
/10
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2023.03.01
0.001
probability
of exploitation in the wild

There is a 0.1% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-01-25
Exploit Probability
Percentile: 0.322
Higher than 32.2% of all CVEs

Attack Vector Metrics

Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED

Impact Metrics

Confidentiality
LOW
Integrity
LOW
Availability
NONE

Description

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-0923, CVE-2020-0924, CVE-2020-0926, CVE-2020-0927, CVE-2020-0930, CVE-2020-0933, CVE-2020-0954, CVE-2020-0973, CVE-2020-0978.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Microsoft

Microsoft SharePoint Enterprise Server

Affected Versions:

2016
Microsoft

Microsoft SharePoint Server

Affected Versions:

2019
Microsoft

Microsoft SharePoint Foundation

Affected Versions:

2010 Service Pack 2 2013 Service Pack 1

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0925
Published: 2020-04-15T15:12:49.000Z
Last Modified: 2025-02-28T20:10:34.885Z
Copied to clipboard!