VYPR
Medium severity6.1NVD Advisory· Published Jan 10, 2018· Updated Jun 17, 2026

CVE-2018-0799

CVE-2018-0799

Description

Microsoft Access in Microsoft SharePoint Enterprise Server 2013 and Microsoft SharePoint Enterprise Server 2016 allows a cross-site-scripting (XSS) vulnerability due to the way image field values are handled, aka "Microsoft Access Tampering Vulnerability".

Affected products

2
  • Microsoft/Accessllm-fuzzy
  • Microsoft Corporation/Microsoft Accessv5
    Range: Microsoft SharePoint Enterprise Server 2013 and Microsoft SharePoint Enterprise Server 2016

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.