cnvd - cnvd-2020-61067

cnvd-2020-61067

Vulnerability from cnvd

Title: Microsoft SharePoint Server跨站脚本漏洞（CNVD-2020-61067）

Description:

Microsoft SharePoint是美国微软（Microsoft）公司的一套企业业务协作平台。该平台用于对业务信息进行整合，并能够共享工作、与他人协同工作、组织项目和工作组、搜索人员和信息。

Microsoft SharePoint Server 存在跨站脚本漏洞，该漏洞源于当未正确地审查发往受影响的 SharePoint 服务器的经特殊设计的 Web 请求时，存在跨站点脚本 (XSS) 漏洞。攻击者可利用该漏洞可能通过向受影响的 SharePoint 服务器发送经特殊设计的请求。

Severity: 低

Patch Name: Microsoft SharePoint Server跨站脚本漏洞（CNVD-2020-61067）的补丁

Patch Description:

Microsoft SharePoint Server 存在跨站脚本漏洞，该漏洞源于当未正确地审查发往受影响的 SharePoint 服务器的经特殊设计的 Web 请求时，存在跨站点脚本 (XSS) 漏洞。攻击者可利用该漏洞可能通过向受影响的 SharePoint 服务器发送经特殊设计的请求。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://support.microsoft.com/en-us/help/4486676/security-update-for-sharepoint-server-2019-october-13-2020

Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-16945

Impacted products

Name
['Microsoft Microsoft SharePoint Enterprise Server 2016', 'Microsoft Microsoft SharePoint Foundation 2013 SP1', 'Microsoft Microsoft SharePoint Server 2019']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-16945",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-16945"
    }
  },
  "description": "Microsoft SharePoint\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4e00\u5957\u4f01\u4e1a\u4e1a\u52a1\u534f\u4f5c\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u7528\u4e8e\u5bf9\u4e1a\u52a1\u4fe1\u606f\u8fdb\u884c\u6574\u5408\uff0c\u5e76\u80fd\u591f\u5171\u4eab\u5de5\u4f5c\u3001\u4e0e\u4ed6\u4eba\u534f\u540c\u5de5\u4f5c\u3001\u7ec4\u7ec7\u9879\u76ee\u548c\u5de5\u4f5c\u7ec4\u3001\u641c\u7d22\u4eba\u5458\u548c\u4fe1\u606f\u3002\n\nMicrosoft SharePoint Server \u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5f53\u672a\u6b63\u786e\u5730\u5ba1\u67e5\u53d1\u5f80\u53d7\u5f71\u54cd\u7684 SharePoint \u670d\u52a1\u5668\u7684\u7ecf\u7279\u6b8a\u8bbe\u8ba1\u7684 Web \u8bf7\u6c42\u65f6\uff0c\u5b58\u5728\u8de8\u7ad9\u70b9\u811a\u672c (XSS) \u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u53ef\u80fd\u901a\u8fc7\u5411\u53d7\u5f71\u54cd\u7684 SharePoint \u670d\u52a1\u5668\u53d1\u9001\u7ecf\u7279\u6b8a\u8bbe\u8ba1\u7684\u8bf7\u6c42\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://support.microsoft.com/en-us/help/4486676/security-update-for-sharepoint-server-2019-october-13-2020",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-61067",
  "openTime": "2020-11-08",
  "patchDescription": "Microsoft SharePoint\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4e00\u5957\u4f01\u4e1a\u4e1a\u52a1\u534f\u4f5c\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u7528\u4e8e\u5bf9\u4e1a\u52a1\u4fe1\u606f\u8fdb\u884c\u6574\u5408\uff0c\u5e76\u80fd\u591f\u5171\u4eab\u5de5\u4f5c\u3001\u4e0e\u4ed6\u4eba\u534f\u540c\u5de5\u4f5c\u3001\u7ec4\u7ec7\u9879\u76ee\u548c\u5de5\u4f5c\u7ec4\u3001\u641c\u7d22\u4eba\u5458\u548c\u4fe1\u606f\u3002\r\n\r\nMicrosoft SharePoint Server \u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5f53\u672a\u6b63\u786e\u5730\u5ba1\u67e5\u53d1\u5f80\u53d7\u5f71\u54cd\u7684 SharePoint \u670d\u52a1\u5668\u7684\u7ecf\u7279\u6b8a\u8bbe\u8ba1\u7684 Web \u8bf7\u6c42\u65f6\uff0c\u5b58\u5728\u8de8\u7ad9\u70b9\u811a\u672c (XSS) \u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u53ef\u80fd\u901a\u8fc7\u5411\u53d7\u5f71\u54cd\u7684 SharePoint \u670d\u52a1\u5668\u53d1\u9001\u7ecf\u7279\u6b8a\u8bbe\u8ba1\u7684\u8bf7\u6c42\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Microsoft SharePoint Server\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2020-61067\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Microsoft Microsoft SharePoint Enterprise Server 2016",
      "Microsoft Microsoft SharePoint Foundation 2013 SP1",
      "Microsoft Microsoft SharePoint Server 2019"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-16945",
  "serverity": "\u4f4e",
  "submitTime": "2020-10-30",
  "title": "Microsoft SharePoint Server\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2020-61067\uff09"
}

CVE-2020-16945 (GCVE-0-2020-16945)

Vulnerability from cvelistv5

Published

2020-10-16 22:18

Modified

2024-08-04 13:45

Severity ?

8.7 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N/E:P/RL:O/RC:C

CWE

Spoofing

Summary

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server. The attacker who successfully exploited the vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the current user. The attacks could allow the attacker to read content that the attacker is not authorized to read, use the victim's identity to take actions on the SharePoint site on behalf of the user, such as change permissions and delete content, and inject malicious content in the browser of the user. The security update addresses the vulnerability by helping to ensure that SharePoint Server properly sanitizes web requests.

References

▼	URL	Tags
	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16945	x_refsource_MISC

Impacted products

Vendor

Product

Version

▼

Microsoft

Microsoft SharePoint Enterprise Server 2016

Version: 16.0.0 < publication
cpe:2.3:a:microsoft:sharepoint_server:2016:*:*:*:enterprise:*:*:*

	Microsoft	Microsoft SharePoint Server 2019	Version: 16.0.0 < publication cpe:2.3:a:microsoft:sharepoint_server:2019:::::::*
	Microsoft	Microsoft SharePoint Foundation 2013 Service Pack 1	Version: 15.0.0 < publication cpe:2.3:a:microsoft:sharepoint_foundation:2013:sp1::::::

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T13:45:34.563Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16945"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:microsoft:sharepoint_server:2016:*:*:*:enterprise:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Microsoft SharePoint Enterprise Server 2016",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "16.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:microsoft:sharepoint_server:2019:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Microsoft SharePoint Server 2019",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "16.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:microsoft:sharepoint_foundation:2013:sp1:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Microsoft SharePoint Foundation 2013 Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "publication",
              "status": "affected",
              "version": "15.0.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2020-10-13T07:00:00+00:00",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "\u003cp\u003eA cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server.\u003c/p\u003e\n\u003cp\u003eThe attacker who successfully exploited the vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the current user. The attacks could allow the attacker to read content that the attacker is not authorized to read, use the victim\u0027s identity to take actions on the SharePoint site on behalf of the user, such as change permissions and delete content, and inject malicious content in the browser of the user.\u003c/p\u003e\n\u003cp\u003eThe security update addresses the vulnerability by helping to ensure that SharePoint Server properly sanitizes web requests.\u003c/p\u003e\n"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Spoofing",
              "lang": "en-US",
              "type": "Impact"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-12-31T19:20:19.093Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16945"
        }
      ],
      "title": "Microsoft Office SharePoint XSS Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2020-16945",
    "datePublished": "2020-10-16T22:18:00",
    "dateReserved": "2020-08-04T00:00:00",
    "dateUpdated": "2024-08-04T13:45:34.563Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted