CVE-2020-1173
published 2020-05-21CVE-2020-1173: A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft Power BI…
PriorityP431medium6.8CVSS 3.1
AVNACLPRLUIRSCCNIHAN
EPSS
2.39%
81.9th percentile
A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft Power BI Report Server Spoofing Vulnerability'.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| juniper | junos_os | — | — |
| microsoft | power_bi_report_server | — | — |
| msrc | power_bi_report_server | — | — |
CVSS provenance
nvdv3.16.8MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:N/I:P/A:N
vendor_msrc6.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-42v9-rj5j-m2v5: A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft P
ghsa_unreviewed·2022-05-24
CVE-2020-1173 [LOW] GHSA-42v9-rj5j-m2v5: A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft P
A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft Power BI Report Server Spoofing Vulnerability'.
Juniper
CVE-2020-1640: An improper use of a validation framework when processing incoming genuine BGP packets within Juniper Networks RPD (routing protocols process) daemon
vendor_juniper·2020-07-17·CVSS 7.5
CVE-2020-1640 [HIGH] CWE-1173 CVE-2020-1640: An improper use of a validation framework when processing incoming genuine BGP packets within Juniper Networks RPD (routing protocols process) daemon
CVE-2020-1640: An improper use of a validation framework when processing incoming genuine BGP packets within Juniper Networks RPD (routing protocols process) daemon allows an attacker to crash RPD thereby causing a Denial of Service (DoS) condition. This framework requires these packets to be passed. By continuously sending any of these types of formatted genuine packets, an attacker can repeatedly crash the RPD process causing a sustained Denial of Service. Authentication to the BGP peer is not required. This issue can be initiated or propagated through eBGP and iBGP and can impact devices in either modes of use as long as the devices are configured to support the compromised framework and a BGP path is activated or active. This issue affects: Juniper Networks Junos OS 16.1 versions 16.1R
Microsoft
Microsoft Power BI Report Server Spoofing Vulnerability
vendor_msrc·2020-05-12·CVSS 6.8
CVE-2020-1173 [MEDIUM] Microsoft Power BI Report Server Spoofing Vulnerability
Microsoft Power BI Report Server Spoofing Vulnerability
Description: A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments. An authenticated attacker could exploit the vulnerability by uploading a specially crafted payload and sending it to the user.
The attacker who successfully exploited this vulnerability could then perform actions and run scripts in the security context of the user.
This security update addresses the vulnerability by ensuring Power BI Report Server properly validates content-type of the attachments when uploading and opening.
FAQ: What version of Power BI has this vulnerability?
The version of Power BI that contains the vulnerability is the May 2019 Release, version 1.5.7074.36177 (Build
No detection rules found.
No public exploits indexed.
Talos
Vulnerability Spotlight: Multiple vulnerabilities in Synology DiskStation Manager
blogs_talos·2021-04-20·CVSS 9.0
CVE-2021-26564 [CRITICAL] Vulnerability Spotlight: Multiple vulnerabilities in Synology DiskStation Manager
## Vulnerability Spotlight: Multiple vulnerabilities in Synology DiskStation Manager
Cisco Talos recently discovered multiple vulnerabilities in Synology DiskStation Manager.
DSM is the Linux-based operating system for every Synology network-attached storage device (NAS). The vulnerabilities exist in various features inside the operating system, including AppArmor and QuickConnect. TALOS-2020-1173 and TALOS-2020-1160 (CVE-2021-26564, CVE-2021-26565 and CVE-2021-26566) are both information disclosure vulnerabilities in DSM. An attacker could exploit both vulnerabilities to steal sensitive login credentials, including those of an administrator.
An attacker could also exploit TALOS-2020-1159 (CVE-2021-26560, CVE-2021-26561 and CVE-2021-26562) with a man-in-the-middle technique to gain the
Talos
Vulnerability Spotlight: Multiple vulnerabilities in Synology DiskStation Manager
blogs_talos·2021-04-20·CVSS 9.0
CVE-2021-26564 [CRITICAL] Vulnerability Spotlight: Multiple vulnerabilities in Synology DiskStation Manager
Cisco Talos recently discovered multiple vulnerabilities in Synology DiskStation Manager.
DSM is the Linux-based operating system for every Synology network-attached storage device (NAS). The vulnerabilities exist in various features inside the operating system, including AppArmor and QuickConnect. TALOS-2020-1173 and TALOS-2020-1160 (CVE-2021-26564, CVE-2021-26565 and CVE-2021-26566) are both information disclosure vulnerabilities in DSM. An attacker could exploit both vulnerabilities to steal sensitive login credentials, including those of an administrator.
An attacker could also exploit TALOS-2020-1159 (CVE-2021-26560, CVE-2021-26561 and CVE-2021-26562) with a man-in-the-middle technique to gain the ability to remotely execute code as the root user (however within a restricted AppArmo
Talos
Microsoft Patch Tuesday — May 2020: Vulnerability disclosures and Snort coverage
blogs_talos·2020-05-12·CVSS 9.8
[CRITICAL] Microsoft Patch Tuesday — May 2020: Vulnerability disclosures and Snort coverage
## Microsoft Patch Tuesday — May 2020: Vulnerability disclosures and Snort coverage
By Jon Munshaw.
Microsoft released its monthly security update today, disclosing vulnerabilities across many of its products and releasing corresponding updates. This month's Patch Tuesday covers 111 vulnerabilities. Fifteen of the flaws Microsoft disclosed are considered critical. There are also 95 "important" vulnerabilities and six low- and moderate-severity vulnerabilities each.
Cisco Talos specifically disclosed CVE-2020-0901 , a code execution vulnerability in Excel. This month’s security update also covers security issues in a variety of Microsoft services and software, including SharePoint, Media Foundation and the Chakra scripting engine.
Talos also released a new set of SNORTⓇ rules that provi
Talos
Microsoft Patch Tuesday — May 2020: Vulnerability disclosures and Snort coverage
blogs_talos·2020-05-12·CVSS 9.8
CVE-2020-0901 [CRITICAL] Microsoft Patch Tuesday — May 2020: Vulnerability disclosures and Snort coverage
By Jon Munshaw.
Microsoft released its monthly security update today, disclosing vulnerabilities across many of its products and releasing corresponding updates. This month's Patch Tuesday covers 111 vulnerabilities. Fifteen of the flaws Microsoft disclosed are considered critical. There are also 95 "important" vulnerabilities and six low- and moderate-severity vulnerabilities each.
Cisco Talos specifically disclosed CVE-2020-0901, a code execution vulnerability in Excel. This month’s security update also covers security issues in a variety of Microsoft services and software, including SharePoint, Media Foundation and the Chakra scripting engine.
Talos also released a new set of SNORTⓇ rules that provide coverage for some of these vulnerabilities. For more, check out the full Snort rule
2020-05-21
Published