CVE-2018-8518

An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoint. This CVE ID is unique from CVE-2018-8480, CVE-2018-8488, CVE-2018-8498.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.4 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libjavascriptcoregtk-4_0-18
suse enterprise sap 12 SP3
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP4
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP5
2.34.3-2.82.1
fixed
suse enterprise sap 15
2.34.3-3.92.1
fixed
suse enterprise sap 15 SP1
2.34.3-3.92.1
fixed
suse enterprise server 12 SP3
2.34.3-2.82.1
fixed
suse enterprise server 12 SP4
2.34.3-2.82.1
fixed
suse enterprise server 12 SP5
2.34.3-2.82.1
fixed
suse enterprise server 15
2.34.3-3.92.1
fixed
suse enterprise server 15 SP1
2.34.3-3.92.1
fixed
libwebkit2gtk-4_0-37
suse enterprise sap 12 SP3
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP4
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP5
2.34.3-2.82.1
fixed
suse enterprise sap 15
2.34.3-3.92.1
fixed
suse enterprise sap 15 SP1
2.34.3-3.92.1
fixed
suse enterprise server 12 SP3
2.34.3-2.82.1
fixed
suse enterprise server 12 SP4
2.34.3-2.82.1
fixed
suse enterprise server 12 SP5
2.34.3-2.82.1
fixed
suse enterprise server 15
2.34.3-3.92.1
fixed
suse enterprise server 15 SP1
2.34.3-3.92.1
fixed
libwebkit2gtk3-lang
suse enterprise sap 12 SP3
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP4
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP5
2.34.3-2.82.1
fixed
suse enterprise sap 15
2.34.3-3.92.1
fixed
suse enterprise sap 15 SP1
2.34.3-3.92.1
fixed
suse enterprise server 12 SP3
2.34.3-2.82.1
fixed
suse enterprise server 12 SP4
2.34.3-2.82.1
fixed
suse enterprise server 12 SP5
2.34.3-2.82.1
fixed
suse enterprise server 15
2.34.3-3.92.1
fixed
suse enterprise server 15 SP1
2.34.3-3.92.1
fixed
typelib-1_0-JavaScriptCore-4_0
suse enterprise sap 12 SP3
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP4
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP5
2.34.3-2.82.1
fixed
suse enterprise sap 15
2.34.3-3.92.1
fixed
suse enterprise sap 15 SP1
2.34.3-3.92.1
fixed
suse enterprise server 12 SP3
2.34.3-2.82.1
fixed
suse enterprise server 12 SP4
2.34.3-2.82.1
fixed
suse enterprise server 12 SP5
2.34.3-2.82.1
fixed
suse enterprise server 15
2.34.3-3.92.1
fixed
suse enterprise server 15 SP1
2.34.3-3.92.1
fixed
typelib-1_0-WebKit2-4_0
suse enterprise sap 12 SP3
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP4
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP5
2.34.3-2.82.1
fixed
suse enterprise sap 15
2.34.3-3.92.1
fixed
suse enterprise sap 15 SP1
2.34.3-3.92.1
fixed
suse enterprise server 12 SP3
2.34.3-2.82.1
fixed
suse enterprise server 12 SP4
2.34.3-2.82.1
fixed
suse enterprise server 12 SP5
2.34.3-2.82.1
fixed
suse enterprise server 15
2.34.3-3.92.1
fixed
suse enterprise server 15 SP1
2.34.3-3.92.1
fixed
typelib-1_0-WebKit2WebExtension-4_0
suse enterprise sap 12 SP3
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP4
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP5
2.34.3-2.82.1
fixed
suse enterprise sap 15
2.34.3-3.92.1
fixed
suse enterprise sap 15 SP1
2.34.3-3.92.1
fixed
suse enterprise server 12 SP3
2.34.3-2.82.1
fixed
suse enterprise server 12 SP4
2.34.3-2.82.1
fixed
suse enterprise server 12 SP5
2.34.3-2.82.1
fixed
suse enterprise server 15
2.34.3-3.92.1
fixed
suse enterprise server 15 SP1
2.34.3-3.92.1
fixed
webkit2gtk-4_0-injected-bundles
suse enterprise sap 12 SP3
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP4
2.34.3-2.82.1
fixed
suse enterprise sap 12 SP5
2.34.3-2.82.1
fixed
suse enterprise sap 15
2.34.3-3.92.1
fixed
suse enterprise sap 15 SP1
2.34.3-3.92.1
fixed
suse enterprise server 12 SP3
2.34.3-2.82.1
fixed
suse enterprise server 12 SP4
2.34.3-2.82.1
fixed
suse enterprise server 12 SP5
2.34.3-2.82.1
fixed
suse enterprise server 15
2.34.3-3.92.1
fixed
suse enterprise server 15 SP1
2.34.3-3.92.1
fixed
webkit2gtk3-devel
suse enterprise sap 15
2.34.3-3.92.1
fixed
suse enterprise sap 15 SP1
2.34.3-3.92.1
fixed
suse enterprise server 15
2.34.3-3.92.1
fixed
suse enterprise server 15 SP1
2.34.3-3.92.1
fixed
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/105496
http://www.securitytracker.com/id/1041835
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8518
http://www.securityfocus.com/bid/105496
http://www.securitytracker.com/id/1041835
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8518