logo

CVE-2019-0604 - Microsoft SharePoint Remote Code Execution Vulnerability

CVE-2019-0604

Microsoft | SharePoint

  • Date Added:
  • 2021-11-03
  • Due Date:
  • 2022-05-03
Vulnerability Name

Microsoft SharePoint Remote Code Execution Vulnerability

Description

Microsoft SharePoint fails to check the source markup of an application package. An attacker who successfully exploits the vulnerability could run remote code in the context of the SharePoint application pool and the SharePoint server farm account.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-0604
Related News Articles

Free security scan for your website