Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
SharePoint Vulnerability - CVE-2020-1440 - Vulnerability Database
SharePoint

SharePoint Vulnerability - CVE-2020-1440

Medium
Reference: CVE-2020-1440
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-1440
Title: SharePoint Vulnerability
Overview:

ltpgtA tampering vulnerability exists when Microsoft SharePoint Server fails to properly handle profile data. An attacker who successfully exploited this vulnerability could modify a targeted user39s profile data.lt/pgt ltpgtTo exploit the vulnerability an attacker would need to be authenticated on an affected SharePoint Server. The attacker would then need to send a specially modified request to the server targeting a specific user.lt/pgt ltpgtThe security update addresses the vulnerability by modifying how Microsoft SharePoint Server handles profile data.lt/pgt