CVE Vulnerabilities

CVE-2020-0977

Published: Apr 15, 2020 | Modified: Jul 21, 2021
CVSS 3.x
5.4
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
CVSS 2.x
3.5 LOW
AV:N/AC:M/Au:S/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka Microsoft SharePoint Spoofing Vulnerability. This CVE ID is unique from CVE-2020-0972, CVE-2020-0975, CVE-2020-0976.

Affected Software

Name Vendor Start Version End Version
Sharepoint_enterprise_server Microsoft 2013-sp1 (including) 2013-sp1 (including)
Sharepoint_enterprise_server Microsoft 2016 (including) 2016 (including)
Sharepoint_server Microsoft 2019 (including) 2019 (including)

References