Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2020-16952Origin Validation Error in Microsoft Sharepoint Enterprise Server 2016

CWE-346Origin Validation Error5 documents5 sources
Severity
7.8HIGHNVD
CNA8.6
EPSS
75.1%
top 1.12%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
6
Microsoft Sharepoint Enterprise Server 2016Microsoft Sharepoint Foundation 2013 Service Pack 1Microsoft Sharepoint Server 2019+3 more
Timeline
PublishedOct 16
Latest updateMay 24

Description

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SharePoint application pool and the SharePoint server farm account. Exploitation of this vulnerability requires that a user uploads a specially crafted SharePoint application package to an affected version of SharePoint. The security update addresse

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages6 packages

CVEListV5microsoft/microsoft_sharepoint_server_201916.0.0publication

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-4xg2-wcmm-2j45: A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka2022-05-24
CVEList
Microsoft SharePoint Remote Code Execution Vulnerability2020-10-16

💥Exploits & PoCs

1
Nuclei
Microsoft SharePoint - Remote Code Execution

📋Vendor Advisories

1
Microsoft
Microsoft SharePoint Remote Code Execution Vulnerability2020-10-13
CVE-2020-16952 — Origin Validation Error in Microsoft | cvebase