First published: Tue Mar 05 2019(Updated: )
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0594.
Credit: secure@microsoft.com secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
HP Sizer for Microsoft SharePoint 2013 | ||
Microsoft SharePoint Enterprise Server 2016 | =2016 | |
Microsoft SharePoint Foundation 2013 | =2013-sp1 | |
Microsoft SharePoint Server 2010 | =2010-sp2 | |
Microsoft SharePoint Server 2010 | =2019 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-0604 is a remote code execution vulnerability in Microsoft SharePoint.
CVE-2019-0604 has a severity rating of 9.8 out of 10, which is considered critical.
Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Foundation 2013 SP1, Microsoft SharePoint Server 2010 SP2, and Microsoft SharePoint Server 2019 are affected by CVE-2019-0604.
CVE-2019-0604 is categorized under CWE-20: Improper Input Validation.
To fix CVE-2019-0604, it is recommended to apply the latest security updates provided by Microsoft.