vulnerability
Red Hat: CVE-2020-1147: CVE-2020-1147 dotnet: XML source markup processing remote code execution (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Jul 14, 2020 | Jul 16, 2020 | Mar 27, 2026 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Jul 14, 2020
Added
Jul 16, 2020
Modified
Mar 27, 2026
Description
A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.
Solutions
redhat-upgrade-aspnetcore-runtime-3-1redhat-upgrade-aspnetcore-targeting-pack-3-1redhat-upgrade-dotnetredhat-upgrade-dotnet-apphost-pack-3-1redhat-upgrade-dotnet-apphost-pack-3-1-debuginforedhat-upgrade-dotnet-debuginforedhat-upgrade-dotnet-debugsourceredhat-upgrade-dotnet-hostredhat-upgrade-dotnet-host-debuginforedhat-upgrade-dotnet-host-fxr-2-1redhat-upgrade-dotnet-host-fxr-2-1-debuginforedhat-upgrade-dotnet-hostfxr-3-1redhat-upgrade-dotnet-hostfxr-3-1-debuginforedhat-upgrade-dotnet-runtime-2-1redhat-upgrade-dotnet-runtime-2-1-debuginforedhat-upgrade-dotnet-runtime-3-1redhat-upgrade-dotnet-runtime-3-1-debuginforedhat-upgrade-dotnet-sdk-2-1redhat-upgrade-dotnet-sdk-2-1-5xxredhat-upgrade-dotnet-sdk-2-1-5xx-debuginforedhat-upgrade-dotnet-sdk-3-1redhat-upgrade-dotnet-sdk-3-1-debuginforedhat-upgrade-dotnet-targeting-pack-3-1redhat-upgrade-dotnet-templates-3-1redhat-upgrade-dotnet3-1-debuginforedhat-upgrade-dotnet3-1-debugsourceredhat-upgrade-netstandard-targeting-pack-2-1
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.