Description

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1295, CVE-2019-1296.

Remediation

References

CVE-2019-1257

Related Vulnerabilities

Microsoft SQL Server CVE-2023-21713 Vulnerability (CVE-2023-21713)

WordPress Plugin Thrive Leads Security Bypass (2.3.9.3)

Microsoft SQL Server Other Vulnerability (CVE-2000-0603)

WordPress Plugin WP-Filebase Download Manager Remote Code Execution (0.3.0.03)

WordPress Plugin Admin Columns Pro Cross-Site Scripting (5.5.1)

Severity

High

Classification

CVE-2019-1257 CWE-20 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities