← back
CVE-2019-1443

CVE-2019-1443

EPSS 5.4%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 5.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
12 Nov 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An information disclosure vulnerability exists in Microsoft SharePoint when an attacker uploads a specially crafted file to the SharePoint Server.An authenticated attacker who successfully exploited this vulnerability could potentially leverage SharePoint functionality to obtain SMB hashes.The security update addresses the vulnerability by correcting how SharePoint checks file content., aka 'Microsoft SharePoint Information Disclosure Vulnerability'.