Description

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-0950, CVE-2019-0951.

Remediation

References

CVE-2019-0949

Related Vulnerabilities

WebLogic CVE-2022-21353 Vulnerability (CVE-2022-21353)

WordPress Plugin Media from FTP PHP Object Injection (9.79)

WordPress Plugin Frontend File Manager Arbitrary File Upload (3.3)

PHP Out-of-bounds Read Vulnerability (CVE-2020-7060)

WebLogic Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2018-11040)

Severity

Medium

Classification

CVE-2019-0949 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities