CVE-2018-0911

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server (affected versions not specified)

Description: An issue exists where Microsoft SharePoint Server fails to properly sanitize a specially crafted web request, allowing for potential elevation of privilege. This could enable an attacker to perform cross-site scripting attacks, run scripts in the context of the current user, and potentially read unauthorized content, use the victim's identity to alter permissions and delete content, and inject malicious content into the user's browser.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.