Description

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.

Remediation

References

CVE-2020-1181

Related Vulnerabilities

MediaWiki Use of Hard-coded Credentials Vulnerability (CVE-2012-4381)

WordPress Plugin WatuPRO SQL Injection (5.5.3.6)

Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-2204)

WordPress Plugin WPML Translation Management PHP Object Injection (2.4.1)

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2023-39456)

Severity

High

Classification

CVE-2020-1181 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities