以下是从该网页截图中提取的关于漏洞的关键信息: Microsoft SharePoint Information Disclosure Vulnerability CVE-ID: CVE-2026-20958 Release Date: Jan 13, 2026 Last Updated: Jan 14, 2026 Severity and Impact Max Severity: Important Impact: Information Disclosure CVE Details Weakness: CWE-918: Server-Side Request Forgery (SSRF) CVSS Source: Microsoft Vector String: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C Metrics: CVSS:3.1 5.4 / 4.7 Base Score Metrics Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Additional Information Assigning CNA: Microsoft CVE.org link: CVE-2026-20958