CVE-2020-16952

Description from NVD

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-16951.

Information Acquisition Date:2020/11/17
CVSS 2.0: 6.8 MEDIUM CVSS 3.x: 7.8 HIGH

Description from Forti

Microsoft SharePoint Remote Code Execution Vulnerability

Information Acquisition Date:2020/10/18

Affected Products

Impact

Recommended Actions

References

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN

Software Tag:

List of frequently cited URLs

URLNum of Times Referred to
http://www.sesin.at13525
https://lists.astaro.com/ASGV9-IPS-rules.html23
https://secnews.physaphae.fr16
https://www.mcafee.com/blogs/other-blogs/mcafee-labs/cve-20...9
https://www.bleepingcomputer.com/news/security/uk-urges-org...5
http://tweetedtimes.com/securitycrusade?s=tnp4
https://noticiasseguridad.com/vulnerabilidades/miles-de-ser...4
https://srcincite.io/advisories/src-2020-0022/4
https://twitter.com/steventseeley/status/13160846245530173453
https://www.cvebase.com/cve/2020/169523
https://threatpost.com/october-patch-tuesday-wormable-bug/1...3
https://securityaffairs.co/wordpress/109609/security/ncsc-c...3
https://portal.msrc.microsoft.com/en-us/security-guidance/a...3
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2...3
https://ipssignatures.appspot.com/?cve=CVE-2020-169523
https://github.com/rapid7/metasploit-framework/pull/142653
https://attackerkb.com/topics/4yGC4tLK2x/cve-2020-169523

Information from Twitter

User URL Info Source Date
Synacktiv https://twitter.com/Synacktiv/status/1346728492688400386/ph... Source Synacktiv        1346728492688400386 2021/01/06
huzeyfeonal https://lnkd.in/eeY_FKc Source huzeyfeonal      1346759134654459905 2021/01/06
huzeyfeonal https://lnkd.in/eUAgbSF Source huzeyfeonal      1346759134654459905 2021/01/06
huzeyfeonal https://lnkd.in/ez9hbAT Source huzeyfeonal      1346759134654459905 2021/01/06
ipssignatures https://twitter.com/Synacktiv/status/1346728492688400386 Source ipssignatures    1346775021230952449 2021/01/06
VulmonFeeds http://vulmon.com/vulnerabilitydetails?qid=CVE-2020-16952 Source VulmonFeeds      1357253737891430402 2021/02/04
VulmonFeeds https://alerts.vulmon.com/l/uZ Source VulmonFeeds      1357253737891430402 2021/02/04

List of frequently cited URLs

URLNum of Times Referred to
www.sesin.at13525
lists.astaro.com23
secnews.physaphae.fr16
www.mcafee.com9
www.bleepingcomputer.com5
tweetedtimes.com4
noticiasseguridad.com4
srcincite.io4
twitter.com3
www.cvebase.com3
threatpost.com3
securityaffairs.co3
portal.msrc.microsoft.com3
msrc.microsoft.com3
ipssignatures.appspot.com3
github.com3
attackerkb.com3

Information from Twitter

User URL Info Source
Synacktiv twitter.com Show Tweet
huzeyfeonal lnkd.in Show Tweet
huzeyfeonal lnkd.in Show Tweet
huzeyfeonal lnkd.in Show Tweet
ipssignatures twitter.com Show Tweet
VulmonFeeds vulmon.com Show Tweet
VulmonFeeds alerts.vulmon.com Show Tweet
GitHub Search Results: Up to 10
NameURL
No Data
GitHub Search Results: Up to 10
NameURL
No Data
2021/02/04 Score : 1
Added Har-sia Database : 2020/10/14
Last Modified : 2021/02/04
Highest Scored Date : 2020/10/17
Highest Score : 52