CNNVD-202512-1154 Information

CNNVD ID

CNNVD-202512-1154

Related CVE

CVE-2025-64672

• CNNVD Published: 2025-12-09

Description (Chinese)

Microsoft SharePoint是美国微软（Microsoft）公司的一套企业业务协作平台。该平台用于对业务信息进行整合，并能够共享工作、与他人协同工作、组织项目和工作组、搜索人员和信息。 Microsoft SharePoint存在跨站脚本漏洞。攻击者利用该漏洞执行欺骗攻击。

Description (English)

Microsoft SharePoint is a corporate collaboration platform for Microsoft (MSC) in the United States. The platform is used to integrate operational information and to share work, work with others, organize projects and working groups, searchers and information. Microsoft SharePoint has a cross-site script loophole. The attackers used the loophole to carry out the deceptive attack.

Hazard Level

Medium

Vulnerability Type

跨站脚本

Affected Vendor

微软

Published

2025-12-09

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64672

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64672