Описание
Microsoft SharePoint Server Spoofing Vulnerability
FAQ
According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?
The user would have to click on a specially crafted URL to be compromised by the attacker.
According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?
Successful exploitation of this vulnerability requires multiple conditions to be met, such as specific application behavior, user actions, manipulation of parameters passed to a function, and impersonation of an integrity level token.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| Microsoft SharePoint Server 2016 | ||
| Microsoft SharePoint Server 2019 | ||
| Microsoft SharePoint Server Subscription Edition |
Показывать по
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
DOS
EPSS
6.8 Medium
CVSS3
Связанные уязвимости
Microsoft SharePoint Server Spoofing Vulnerability
Уязвимость пакета программ Microsoft SharePoint Server, связанная с непринятием мер по защите структуры веб-страницы, позволяющая нарушителю проводить спуфинг атаки
EPSS
6.8 Medium
CVSS3