Vulnerability Description
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoint Server, Microsoft SharePoint. This CVE ID is unique from CVE-2018-8572.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Sharepoint Enterprise Server | 2016 |
| Microsoft | Sharepoint Foundation | 2013 |
| Microsoft | Sharepoint Server | 2019 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/105829Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1042136Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8568PatchVendor Advisory
- http://www.securityfocus.com/bid/105829Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1042136Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8568PatchVendor Advisory
FAQ
What is CVE-2018-8568?
CVE-2018-8568 is a vulnerability with a CVSS score of 5.4 (MEDIUM). An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint E...
How severe is CVE-2018-8568?
CVE-2018-8568 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-8568?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Sharepoint Enterprise Server, Microsoft Sharepoint Foundation, Microsoft Sharepoint Server.