CVE-2018-8426
CVE-2018-8426
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 2.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
13 Sep 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoint.