Exploit for #VU48301 Information disclosure in Microsoft SharePoint Server and Microsoft SharePoint Foundation

Exploit for #VU48301 Information disclosure in Microsoft SharePoint Server and Microsoft SharePoint Foundation

Published: 2020-11-11

Vulnerability identifier: #VU48301

Vulnerability risk: Medium

CVSSv3.1: 4.8 [CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2020-17017

CWE-ID: CWE-200

Exploitation vector: Network

Exploits in database: 1

November 11, 2020
- Microsoft SharePoint Server TOCTOU ControlParameter Binding Information Disclosure Vulnerability [Source Incite]

Impact: Information disclosure

Vulnerable software:
Microsoft SharePoint Server
Server applications / Application servers
Microsoft SharePoint Foundation
Server applications / Application servers

Vendor: Microsoft