CVE-2019-1332
CVE-2019-1332
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 7.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
10 Dec 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A cross-site scripting (XSS) vulnerability exists when Microsoft SQL Server Reporting Services (SSRS) does not properly sanitize a specially-crafted web request to an affected SSRS server, aka 'Microsoft SQL Server Reporting Services XSS Vulnerability'.