Rapid7 Vulnerability & Exploit Database

Microsoft CVE-2020-16942: Microsoft SharePoint Information Disclosure Vulnerability

Free InsightVM Trial No Credit Card Necessary

2024 Attack Intel Report Latest research by Rapid7 Labs

Back to Search

Microsoft CVE-2020-16942: Microsoft SharePoint Information Disclosure Vulnerability

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:N/A:N)

Published

10/13/2020

Created

10/14/2020

Added

10/13/2020

Modified

01/03/2024

Description

An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when rendering specific web pages, aka 'Microsoft SharePoint Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-16941, CVE-2020-16948, CVE-2020-16950, CVE-2020-16953.

Solution(s)

msft-kb4486694-7b657f8f-a343-430d-b338-aa5468a81e7a
msft-kb4486708-6cd99302-8cb9-4ad4-8709-db9da6e5a823

References

https://attackerkb.com/topics/cve-2020-16942
CVE - 2020-16942
4486676
4486677
4486694
4486708

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Microsoft CVE-2020-16942: Microsoft SharePoint Information Disclosure Vulnerability

Microsoft CVE-2020-16942: Microsoft SharePoint Information Disclosure Vulnerability

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.