← volver
CVE-2020-1439

CVE-2020-1439

EPSS 20.3%
Vexday Risk Score
8Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 20.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
14 jul 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input, aka 'PerformancePoint Services Remote Code Execution Vulnerability'.
Productos afectados
Microsoft · Microsoft SharePoint Enterprise ServerMicrosoft · Microsoft SharePoint FoundationMicrosoft · Microsoft SharePoint Server

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1439https://www.zerodayinitiative.com/advisories/ZDI-20-874/