» 2020 » 9월

CVE-2020-1200

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1200

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka ‘Microsoft SharePoint Remote Code Execution Vulnerability’. This CVE ID is unique from CVE-2020-1210, CVE-2020-1452, CVE-2020-1453, CVE-2020-1576, CVE-2020-1595.

Source: CVE-2020-1200

CVE-2020-1205

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1205

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka ‘Microsoft SharePoint Spoofing Vulnerability’.

Source: CVE-2020-1205

CVE-2020-1210

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1210

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka ‘Microsoft SharePoint Remote Code Execution Vulnerability’. This CVE ID is unique from CVE-2020-1200, CVE-2020-1452, CVE-2020-1453, CVE-2020-1576, CVE-2020-1595.

Source: CVE-2020-1210

CVE-2020-1218

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1218

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka ‘Microsoft Word Remote Code Execution Vulnerability’. This CVE ID is unique from CVE-2020-1338.

Source: CVE-2020-1218

CVE-2020-1245

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1245

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka ‘Win32k Elevation of Privilege Vulnerability’.

Source: CVE-2020-1245

CVE-2020-1250

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1250

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka ‘Win32k Information Disclosure Vulnerability’. This CVE ID is unique from CVE-2020-0941.

Source: CVE-2020-1250

CVE-2020-1227

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1227

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka ‘Microsoft Office SharePoint XSS Vulnerability’. This CVE ID is unique from CVE-2020-1198, CVE-2020-1345, CVE-2020-1482, CVE-2020-1514, CVE-2020-1575.

Source: CVE-2020-1227

CVE-2020-1115

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1115

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka ‘Windows Common Log File System Driver Elevation of Privilege Vulnerability’.

Source: CVE-2020-1115

CVE-2020-1057

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1057

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka ‘Scripting Engine Memory Corruption Vulnerability’. This CVE ID is unique from CVE-2020-1172, CVE-2020-1180.

Source: CVE-2020-1057

CVE-2020-1034

Posted on 2020년 9월 12일2020년 9월 12일 by admin

CVE-2020-1034

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka ‘Windows Kernel Elevation of Privilege Vulnerability’.

Source: CVE-2020-1034