A cross-site scripting (XSS) vulnerability exists if Microsoft SQL Server Reporting Services (SSRS) does not correctly sanitize a specially-crafted web request to an affected SSRS server. See CVE-2019-1332 for details.


To fix this issue in the products that are listed in “Applies to,” install the following security update, as appropriate:

Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

What affected your experience?

Thank you for your feedback!