CVE-2018-8580

An information disclosure vulnerability exists where certain modes of the search function in Microsoft SharePoint Server are vulnerable to cross-site search attacks (a variant of cross-site request forgery, CSRF), aka "Microsoft SharePoint Information Disclosure Vulnerability." This affects Microsoft SharePoint.

Link	Resource
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8580	Patch Vendor Advisory
http://www.securityfocus.com/bid/106096	Third Party Advisory VDB Entry

Configuration 1

cpe:2.3:a:microsoft:sharepoint_server:2013:sp1:*:*:enterprise:*:*:* cpe:2.3:a:microsoft:sharepoint_server:2016:*:*:*:enterprise:*:*:* cpe:2.3:a:microsoft:sharepoint_server:2010:sp2:*:*:foundation:*:*:*

---

Published : 2018-12-12 12:29

Updated : 2020-07-14 03:28

---

NVD link : CVE-2018-8580

Mitre link : CVE-2018-8580

No products.

CWE-200