Description

A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.

Remediation

References

CVE-2020-1147

Related Vulnerabilities

ownCloud Other Vulnerability (CVE-2015-5954)

WordPress Plugin Image Slider Arbitrary File Deletion (1.1.89)

Ruby on Rails Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5189)

Oracle JRE CVE-2018-2582 Vulnerability (CVE-2018-2582)

Moodle Other Vulnerability (CVE-2004-0725)

Severity

High

Classification

CVE-2020-1147 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities