CVE-2020-1442

Description

A spoofing vulnerability exists when an Office Web Apps server does not properly sanitize a specially crafted request, aka 'Office Web Apps XSS Vulnerability'.

Affected products

• Microsoft / Microsoft Office Online Serverunspecified – unspecified
• Microsoft / Microsoft Office Web Apps2013 Service Pack 1 – 2013 Service Pack 1

References

• VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1442