Description

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.

Remediation

References

CVE-2020-1069

Related Vulnerabilities

MyBB Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2018-1000502)

WordPress Plugin WordPress File Upload Arbitrary File Upload (3.4.0)

WordPress Plugin Gigya-Social Infrastructure Cross-Site Scripting (1.1.8)

WordPress Plugin YITH WooCommerce Authorize.net Payment Gateway Security Bypass (1.1.12)

WordPress Plugin Booking Calendar Multiple Vulnerabilities (6.2)

Severity

High

Classification

CVE-2020-1069 CWE-476 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities