Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
SharePoint Deserialization of Untrusted Data Vulnerability - CVE-2020-1439 - Vulnerability Database
SharePoint

SharePoint Deserialization of Untrusted Data Vulnerability - CVE-2020-1439

High
Reference: CVE-2020-1439
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-1439
Title: SharePoint Deserialization of Untrusted Data Vulnerability
Overview:

A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input aka 39PerformancePoint Services Remote Code Execution Vulnerability39.