KLA11620
SUI Vulnerability in Microsoft SQL Server
Обновлено: 13/03/2020
Дата обнаружения
10/12/2019
Уровень угрозы
High
Описание

A cross-site-scripting (XSS) vulnerability was found in Microsoft SQL Server Reporting Services. Malicious users can exploit this vulnerability to spoof user interface.

Пораженные продукты

SQL Server 2017 Reporting Services
Power BI Report Server
SQL Server 2019 Reporting Services

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
CVE-2019-1332
Оказываемое влияние
?
SUI 
[?]
Связанные продукты
Microsoft SQL Server
CVE-IDS
CVE-2019-13320.0Unknown
Microsoft official advisories
Microsoft Security Update Guide
KB list

4532097
4535706