CVE-2018-0799

Summary

Microsoft Access in Microsoft SharePoint Enterprise Server 2013 and Microsoft SharePoint Enterprise Server 2016 allows a cross-site-scripting (XSS) vulnerability due to the way image field values are handled, aka "Microsoft Access Tampering Vulnerability".

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationMicrosoft AccessMicrosoft SharePoint Enterprise Server 2013 and Microsoft SharePoint Enterprise Server 2016affected

Weaknesses

  • Tampering

ADP Enrichment

CVE Program Container

Additional References

References