vulnerability
Microsoft CVE-2019-1260: Microsoft SharePoint Elevation of Privilege Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:N/I:P/A:N) | Sep 10, 2019 | Sep 10, 2019 | Feb 27, 2023 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:N/I:P/A:N)
Published
Sep 10, 2019
Added
Sep 10, 2019
Modified
Feb 27, 2023
Description
An elevation of privilege vulnerability exists in Microsoft SharePoint. An attacker who successfully exploited this vulnerability could attempt to impersonate another user of the SharePoint server.
To exploit this vulnerability, an authenticated attacker would send a specially crafted request to an affected server, thereby allowing the impersonation of another SharePoint user.
The security update addresses the vulnerability by correcting how Microsoft SharePoint sanitizes user input.
Solutions
msft-kb4475605-ee51cb7e-c5de-4fe4-8a36-24881eccb7f7msft-kb4484098-da8f3e69-0440-4bde-86fc-2250e6418ac0msft-kb4484099-9c863a82-ca4e-4e0c-b585-f84922d944e6
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.