CVE-2018-0923

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server (affected versions not specified)

Description: An issue exists where Microsoft SharePoint Server fails to properly sanitize a specially crafted web request, allowing for elevation of privilege. This could enable an attacker to perform cross-site scripting attacks, potentially reading unauthorized content, using the victim's identity to take actions on the site, and injecting malicious content into the user's browser.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.