cvelist/2019/0xxx/CVE-2019-0558.json

{
    "CVE_data_meta": {
        "ASSIGNER": "secure@microsoft.com",
        "ID": "CVE-2019-0558",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Microsoft SharePoint Server",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "2019"
                                        }
                                    ]
                                }
                            },
                            {
                                "product_name": "Microsoft SharePoint",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "Enterprise Server 2013 Service Pack 1"
                                        },
                                        {
                                            "version_value": "Enterprise Server 2016"
                                        }
                                    ]
                                }
                            },
                            {
                                "product_name": "Microsoft Business Productivity Servers",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "2010 Service Pack 2"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Microsoft"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka \"Microsoft Office SharePoint XSS Vulnerability.\" This affects Microsoft SharePoint Server, Microsoft SharePoint, Microsoft Business Productivity Servers. This CVE ID is unique from CVE-2019-0556, CVE-2019-0557."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Spoofing"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0558",
                "refsource": "CONFIRM",
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0558"
            },
            {
                "name": "106389",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/106389"
            }
        ]
    }
}
- Synchronized data. 2018-11-26 16:06:22 -05:00			`{`
"-Synchronized-Data." 2019-03-18 05:18:01 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "secure@microsoft.com",`
			`"ID": "CVE-2019-0558",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Microsoft SharePoint Server",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "2019"`
			`}`
			`]`
			`}`
			`},`
			`{`
			`"product_name": "Microsoft SharePoint",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "Enterprise Server 2013 Service Pack 1"`
			`},`
			`{`
			`"version_value": "Enterprise Server 2016"`
			`}`
			`]`
			`}`
			`},`
			`{`
			`"product_name": "Microsoft Business Productivity Servers",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "2010 Service Pack 2"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Microsoft"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Added submission from Microsoft for January 2019 Security Updates from 2019-01-08. 2019-01-08 15:08:53 -05:00			`{`
"-Synchronized-Data." 2019-03-18 05:18:01 +00:00			`"lang": "eng",`
			`"value": "A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka \"Microsoft Office SharePoint XSS Vulnerability.\" This affects Microsoft SharePoint Server, Microsoft SharePoint, Microsoft Business Productivity Servers. This CVE ID is unique from CVE-2019-0556, CVE-2019-0557."`
- Added submission from Microsoft for January 2019 Security Updates from 2019-01-08. 2019-01-08 15:08:53 -05:00			`}`
"-Synchronized-Data." 2019-03-18 05:18:01 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Spoofing"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0558",`
			`"refsource": "CONFIRM",`
			`"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0558"`
			`},`
			`{`
			`"name": "106389",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/106389"`
			`}`
			`]`
			`}`
			`}`