Description

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.

Remediation

References

CVE-2020-1069

Related Vulnerabilities

WordPress Plugin Custom Contact Forms Multiple Cross-Site Scripting Vulnerabilities (5.0.0.1)

WordPress Plugin Contact Form by WD-responsive drag & drop contact form builder tool Security Bypass (1.7.14)

WordPress Plugin CopySafe Web Protection Cross-Site Request Forgery (2.5)

Apache Tomcat Improper Input Validation Vulnerability (CVE-2014-0095)

Three.js Uncontrolled Resource Consumption Vulnerability (CVE-2020-28496)

Severity

High

Classification

CVE-2020-1069 CWE-476 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities