2 matches found
CVE-2020-1173
A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft Power BI Report Server Spoofing Vulnerability'...
CVE-2020-1173
CVE-2020-1173 : A spoofing vulnerability in Microsoft Power BI Report Server arises from improper validation of the content-type of uploaded attachments. An authenticated attacker could upload a specially crafted payload and execute scripts in the user’s security context, enabling user-interface ...