Description

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.

Remediation

References

CVE-2020-1069

Related Vulnerabilities

WordPress Plugin All-in-One WP Migration Security Bypass (7.14)

WordPress Plugin Easy Social Feed-Social Photos Gallery-Post Feed-Like Box Cross-Site Scripting (6.2.6)

WordPress Plugin Pricing Table by Supsystic Cross-Site Request Forgery (1.8.0)

SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1452)

Caddy Web Server Improper Authentication Vulnerability (CVE-2018-21246)

Severity

High

Classification

CVE-2020-1069 CWE-476 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities