A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0594.
References
| Link | Resource |
|---|---|
| http://www.securityfocus.com/bid/106914 | Third Party Advisory VDB Entry Broken Link |
| http://www.securityfocus.com/bid/106914 | Third Party Advisory VDB Entry Broken Link |
| https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0604 | Patch Vendor Advisory |
| https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0604 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
04 Apr 2025, 15:33
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://www.securityfocus.com/bid/106914 - Third Party Advisory, VDB Entry, Broken Link |
07 Feb 2025, 17:15
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0604 - Patch, Vendor Advisory | |
| References | () http://www.securityfocus.com/bid/106914 - Third Party Advisory, VDB Entry |
Information
Published : 2019-03-05 23:29
Updated : 2025-04-04 15:33
NVD link : CVE-2019-0604
Mitre link : CVE-2019-0604
JSON object : View
Products Affected
microsoft
- sharepoint_enterprise_server
- sharepoint_server
- sharepoint_foundation
CWE
CWE-20
Improper Input Validation