CVE-2020-1181
N/A
N/A
Summary
A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Microsoft | Microsoft SharePoint Enterprise Server | 2016 | affected |
| Microsoft | Microsoft SharePoint Server | 2019 | affected |
| Microsoft | Microsoft SharePoint Foundation | 2010 Service Pack 2 | affected |
| Microsoft | Microsoft SharePoint Foundation | 2013 Service Pack 1 | affected |
Weaknesses
- Remote Code Execution
ADP Enrichment
CVE Program Container
Additional References
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1181
- https://www.zerodayinitiative.com/advisories/ZDI-20-694/
References
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1181
- https://www.zerodayinitiative.com/advisories/ZDI-20-694/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.