Vulnetix
Try Vulnetix Request Demo
CVE-2019-1447 PUBLISHED CVSS 5.400000095367432 MEDIUM

A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications handlers correctly, aka 'Microsoft Office Online Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1445.

EPSS 0.79% · 73.8th percentile

Risk Scores

CVSS v3.1
5.400000095367432
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
EPSS Score
0.79%
73.8th percentile

Affected Products

VendorProductVersions
MicrosoftOffice Online Serverunspecified
microsoftoffice_online_server

Timeline

References

Open in Interactive Console →