CyberSec.Space Logo
Back to CVE Browser

CVE-2018-8600

MEDIUM
6.1
CVSS Severity Score
EPSS Score0.0090%
EPSS Percentile11.01th
PublishedNov 14, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

A Cross-site Scripting (XSS) vulnerability exists when Azure App Services on Azure Stack does not properly sanitize user provided input, aka "Azure App Service Cross-site Scripting Vulnerability." This affects Azure App.

Affected Platforms (CPE)

πŸ“¦
Microsoft

Azure App Service On Azure Stack

All versions

References & Advisories

πŸ”— http://www.securityfocus.com/bid/105893
πŸ”— https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8600
πŸ”— http://www.securityfocus.com/bid/105893
πŸ”— https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8600

Related Vulnerabilities

CVE-2019-137210.0

An remote code execution vulnerability exists when Azure App Service/ Antares on Azure Stack fails to check the length of a buffer...

CVE-2018-261110.0

Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: Core Service...

CVE-2018-487210.0

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006...

CVE-2018-100012410.0

I Librarian I-librarian version 4.8 and earlier contains a XML External Entity (XXE) vulnerability in line 154 of importmetadata.p...