Medium severity5.4NVD Advisory· Published Aug 8, 2017· Updated Jun 17, 2026
CVE-2017-8654
CVE-2017-8654
Description
Microsoft SharePoint Server 2010 Service Pack 2 allows a cross-site scripting (XSS) vulnerability when it does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability".
Affected products
2- cpe:2.3:a:microsoft:sharepoint_server:2010:sp2:*:*:*:*:*:*
- Microsoft Corporation/Microsoft Officev5Range: Microsoft SharePoint Server 2010 Service Pack 2
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8654nvdPatchVendor Advisory
- www.securityfocus.com/bid/100064nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039111nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.