CVE-2020-1181

EPSS 69.3%

Vexday Risk Score

15Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 69.3%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

09 Jun 2020Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Execution Vulnerability'.

Affected products

Microsoft · Microsoft SharePoint Enterprise Server Microsoft · Microsoft SharePoint Foundation Microsoft · Microsoft SharePoint Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1181 https://www.zerodayinitiative.com/advisories/ZDI-20-694/