7 matches found
CVE-2026-45644
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Live Share Canvas SDK allows an authorized attacker to elevate privileges over a network...
CVE-2026-45644
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Live Share Canvas SDK allows an authorized attacker to elevate privileges over a network...
CVE-2026-45644 Microsoft Live Share Canvas SDK Elevation of Privilege Vulnerability
...
EUVD-2026-35568
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Live Share Canvas SDK allows an authorized attacker to elevate privileges over a network...
CVE-2026-45644
CVE-2026-45644 affects Microsoft Live Share Canvas SDK. The issue is improper neutralization of input during web page generation (XSS) that can be exploited by an authorized attacker over a network to elevate privileges. CVSS 3.1: 8.0 (HIGH) with Network attack vector, Low privileges required, Us...
PT-2026-48008
Name of the Vulnerable Software and Affected Versions Microsoft Live Share Canvas SDK affected versions not specified Description Improper neutralization of input during web page generation leads to cross-site scripting, which allows an authorized attacker to elevate privileges over a network...
Microsoft Live Share Canvas SDK 跨站脚本漏洞
The Microsoft Live Share Canvas SDK is an optional extension from the American company Microsoft. It is designed specifically to help developers easily add real-time, multi-person collaborative digital whiteboards or drawing boards into Microsoft Teams meeting applications. The Microsoft Live Sha...