CVE-2020-1442: A spoofing vulnerability exists when an Office Web Apps server does not properly sanitize a specially crafted request, aka 'Office Web Apps XSS Vulnerability'.

medium6.1CVSS 3.1

AVNACLPRNUIRSCCLILAN

A spoofing vulnerability exists when an Office Web Apps server does not properly sanitize a specially crafted request, aka 'Office Web Apps XSS Vulnerability'.

Affected

5 ranges

Vendor	Product	Version range	Fixed in
microsoft	microsoft_office_online_server	—	—
microsoft	microsoft_office_web_apps	—	—
microsoft	office_web_apps	—	—
msrc	microsoft_office_online_server	—	—
msrc	microsoft_office_web_apps_2013_service_pack_1	—	—