Описание
Improper neutralization of input during web page generation ('cross-site scripting') in Office Out-of-Box Experience allows an unauthorized attacker to perform spoofing over a network.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:microsoft:office_out-of-box_experience:-:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.00062
Низкий
8.2 High
CVSS3
8.2 High
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 8.2
github
около 2 месяцев назад
Improper neutralization of input during web page generation ('cross-site scripting') in Office Out-of-Box Experience allows an unauthorized attacker to perform spoofing over a network.
EPSS
Процентиль: 19%
0.00062
Низкий
8.2 High
CVSS3
8.2 High
CVSS3
Дефекты
CWE-79