A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1023, CVE-2020-1102.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1024 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-05-21 16:15
Updated : 2020-05-26 10:55
NVD link : CVE-2020-1024
Mitre link : CVE-2020-1024
JSON object : View
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type
Products Affected
microsoft
- sharepoint_foundation
- sharepoint_server
- sharepoint_enterprise_server