logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2020-16952 — Microsoft SharePoint Remote Code Execution Vulnerabilities

Description

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka ‘Microsoft SharePoint Remote Code Execution Vulnerability’. This CVE ID is unique from CVE-2020-16951. **Recent assessments:** **wvu-r7** at October 13, 2020 7:56pm UTC reported: Please see the [Rapid7 analysis](<https://attackerkb.com/topics/4yGC4tLK2x/cve-2020-16952#rapid7-analysis>). A [Metasploit module](<https://github.com/rapid7/metasploit-framework/pull/14265>) will be released. **ccondon-r7** at October 16, 2020 7:04pm UTC reported: Please see the [Rapid7 analysis](<https://attackerkb.com/topics/4yGC4tLK2x/cve-2020-16952#rapid7-analysis>). A [Metasploit module](<https://github.com/rapid7/metasploit-framework/pull/14265>) will be released. Assessed Attacker Value: 5 Assessed Attacker Value: 5Assessed Attacker Value: 4


Related