Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:9 p.m.21 views

CVE-2020-0646

A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka '.NET Framework Remote Code Execution Injection Vulnerability'...

10CVSS8.3AI score0.99222EPSS
Exploits5References1
Exploit DB
Exploit DB
added 2020/03/31 12:0 a.m.384 views

SharePoint Workflows - XOML Injection (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SharePoint Workflows XOML Injection', 'Description' = %q This module exploits a vulnerability within SharePoint and its .NET backend that allows ...

10CVSS9.6AI score0.99222EPSS
Exploits5
0day.today
0day.today
added 2020/03/26 12:0 a.m.937 views

SharePoint Workflows XOML Injection Exploit

This Metasploit module exploits a vulnerability within SharePoint and its .NET backend that allows an attacker to execute commands using specially crafted XOML data sent to SharePoint via the Workflows functionality. This module requires Metasploit: https://metasploit.com/download Current source:...

10CVSS0.5AI score0.99222EPSS
Exploits5
Packet Storm
Packet Storm
added 2020/03/26 12:0 a.m.230 views

SharePoint Workflows XOML Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SharePoint Workflows XOML Injection', 'Description' = %q This module exploits a vulnerability within SharePoint and its .NET backend that allows ...

10CVSS0.5AI score0.99222EPSS
Exploits5
Circl
Circl
added 2020/03/25 4:34 p.m.13 views

CVE-2020-0646

creationtimestamp| type| source ---|---|--- 2020-03-25 16:34:46+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/sharepointworkflowsxoml.rb 2020-03-31 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/48275 2021-09-21 06:42:55+00:0...

10CVSS7.3AI score0.99222EPSS
Exploits5References9
Metasploit
Metasploit
added 2020/03/20 9:57 p.m.118 views

SharePoint Workflows XOML Injection

This module exploits a vulnerability within SharePoint and its .NET backend that allows an attacker to execute commands using specially crafted XOML data sent to SharePoint via the Workflows functionality. This module requires Metasploit: https://metasploit.com/download Current source:...

9.8CVSS0.5AI score0.99222EPSS
Exploits5
OpenVAS
OpenVAS
added 2020/01/15 12:0 a.m.73 views

Microsoft .NET Framework Multiple RCE Vulnerabilities (KB4532938)

This host is missing a critical security update according to Microsoft KB4532938 Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.3AI score
Exploits0References3
OpenVAS
OpenVAS
added 2020/01/15 12:0 a.m.102 views

Microsoft .NET Framework Multiple RCE Vulnerabilities (KB4535102)

This host is missing a critical security update according to Microsoft KB4535102 Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.3AI score
Exploits0References3
CVE
CVE
added 2020/01/14 11:11 p.m.1476 views

CVE-2020-0646

CVE-2020-0646 is a remote code execution vulnerability in Microsoft .NET Framework that arises from improper input validation and is triggered by crafting XOML data sent to SharePoint Workflows. Multiple connected sources confirm exploitable behavior via .NET back-end and XOML injection, enabling...

10CVSS9.7AI score0.99222EPSS
In wildExploits5References3Affected Software1
Microsoft KB
Microsoft KB
added 2020/01/14 8:0 a.m.176 views

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB4534978)

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 KB4534978 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET...

10CVSS9.8AI score0.99222EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2020/01/14 8:0 a.m.3224 views

Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1, RT 8.1, and Windows Server 2012 R2 (KB4535104)

Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1, RT 8.1, and Windows Server 2012 R2 KB4535104 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1...

10CVSS9.8AI score0.99222EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2020/01/14 8:0 a.m.285 views

January 14, 2020-KB4532935 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1709

January 14, 2020-KB4532935 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1709 Release Date: January 14, 2020 Version: .NET Framework 4.8 Summary A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly. An attacker who...

10CVSS9.8AI score0.99222EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2020/01/14 8:0 a.m.6018 views

Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB4535102)

Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 7 SP1 and Windows Server 2008 R2 SP1 KB4535102 Applies to: Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1...

10CVSS9.8AI score0.99222EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2020/01/14 8:0 a.m.1285 views

January 14, 2020-KB4532938 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1903 and Windows Server 1903 RTM and Windows 10, version 1909 and Windows Server, version 1909

January 14, 2020-KB4532938 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1903 and Windows Server 1903 RTM and Windows 10, version 1909 and Windows Server, version 1909 Release Date: January 14, 2020 Version: .NET Framework 3.5 and 4.8 Summary A remote code execution...

10CVSS9.8AI score0.99222EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2020/01/14 8:0 a.m.493 views

January 14, 2020-KB4532936 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1803

January 14, 2020-KB4532936 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1803 Release Date: January 14, 2020 Version: .NET Framework 4.8 Summary A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly. An attacker who...

10CVSS9.8AI score0.99222EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2020/01/14 8:0 a.m.141 views

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB4534977)

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 KB4534977 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2...

10CVSS9.4AI score0.99222EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2020/01/14 8:0 a.m.291 views

Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB4535103)

Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 KB4535103 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2...

10CVSS9.8AI score0.99222EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2020/01/14 8:0 a.m.369 views

Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008 SP2 (KB4535105)

Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008 SP2 KB4535105 Applies to: Microsoft .NET Framework 2.0 Microsoft .NET Framework 3.0 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Summary A remote code execution vulnerability exists when the...

10CVSS9.5AI score0.99222EPSS
Exploits5
Symantec
Symantec
added 2020/01/14 12:0 a.m.856 views

Microsoft .NET Framework CVE-2020-0646 Remote Code Execution Vulnerability

Description Microsoft .NET Framework is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...

0.2AI score0.99222EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2020/01/07 12:0 a.m.112 views

January 14, 2020-KB4532934 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703

January 14, 2020-KB4532934 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703 Release Date: January 14, 2020 Version: .NET Framework 4.8 Summary A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly. An attacker who...

10CVSS9.8AI score0.99222EPSS
Exploits5
Rows per page
Query Builder