Unrated severityNVD Advisory· Published Jan 8, 2019· Updated Feb 28, 2025

CVE-2019-0558

Description

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft Office SharePoint XSS Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoint, Microsoft Business Productivity Servers. This CVE ID is unique from CVE-2019-0556, CVE-2019-0557.

Affected products

Microsoft/Microsoft Business Productivity Serversv5
Range: 2010 Service Pack 2
Microsoft/Microsoft Office SharePointcpe-rescue
Range: Enterprise Server 2013 Service Pack 1
Microsoft/Sharepoint Servercpe-rescue
Range: 2019

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/106389mitrevdb-entryx_refsource_BID
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0558mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000