CVE-2020-0894

EPSS 0.90% · P76 Updated Mar 01, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-0894

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2020-0893.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft SharePoint 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft SharePoint是美国微软（Microsoft）公司的一套企业业务协作平台。该平台用于对业务信息进行整合，并能够共享工作、与他人协同工作、组织项目和工作组、搜索人员和信息。 Microsoft SharePoint Enterprise Server、SharePoint Foundation和SharePoint Server中存在安全漏洞，该漏洞源于程序没有正确清理特制的Web请求。远程攻击者可通过发送特制的请求利用该漏洞在当前用户的安全上下文中执行脚本。以下产品及版本受到影响

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Microsoft	Microsoft SharePoint Enterprise Server	2016	-
Microsoft	Microsoft SharePoint Server	2019	-
Microsoft	Microsoft SharePoint Foundation	2010 Service Pack 2	-

II. Public POCs for CVE-2020-0894

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-0894

请登录查看更多情报信息。

Same Patch Batch · Microsoft · 2020-03-12 · 116 CVEs total

CVE-2020-0808		Microsoft Windows Provisioning Runtime 安全漏洞
CVE-2020-0791		Microsoft Windows Graphics Component 缓冲区错误漏洞
CVE-2020-0796		微软 Microsoft SMBv3 缓冲区错误漏洞
CVE-2020-0795		Microsoft Business Productivity Servers、SharePoint Enterprise Server和SharePoint Foundation
CVE-2020-0798		Microsoft Windows Installer 安全漏洞
CVE-2020-0797		Microsoft Windows Work Folder Service 安全漏洞
CVE-2020-0800		Microsoft Windows Work Folder Service 安全漏洞
CVE-2020-0799		Microsoft Windows Kernel 安全漏洞
CVE-2020-0802		Microsoft Windows Network Connections Service 安全漏洞
CVE-2020-0801		Microsoft Windows Media Foundation 缓冲区错误漏洞
CVE-2020-0804		Microsoft Windows Network Connections Service 安全漏洞
CVE-2020-0803		Microsoft Windows Network Connections Service 安全漏洞
CVE-2020-0807		Microsoft Windows Media Foundation 缓冲区错误漏洞
CVE-2020-0806		Microsoft Windows Error Reporting 安全漏洞
CVE-2020-0809		Microsoft Windows Media Foundation 缓冲区错误漏洞
CVE-2020-0822		Microsoft Windows 安全漏洞
CVE-2020-0819		Microsoft Windows Device Setup Manager 安全漏洞
CVE-2020-0816		Microsoft Edge 缓冲区错误漏洞
CVE-2020-0823		Microsoft Edge和ChakraCore 缓冲区错误漏洞
CVE-2020-0820		Microsoft Windows Media Foundation 信息泄露漏洞

Showing top 20 of 116 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Microsoft SharePoint Enterprise Server

Same vendor: Microsoft

V. Comments for CVE-2020-0894

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-0894

I. Basic Information for CVE-2020-0894

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-0894

III. Intelligence Information for CVE-2020-0894

Same Patch Batch · Microsoft · 2020-03-12 · 116 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-0894

Leave a comment