QID 150496

Date Published: 2022-04-06

QID 150496: Microsoft SharePoint Server Multiple Vulnerabilities

Microsoft SharePoint is a web-based collaborative platform that integrates with Microsoft Office, primarily used as a document management and storage system.

Multiple Vulnerabilities are identified in affected versions of Microsoft SharePoint applications running on target system :
CVE-2019-1330 : Elevation of Privilege Vulnerability when an authenticated attacker would send a specially crafted request to an affected server, thereby allowing the impersonation of another SharePoint user.

CVE-2019-1331 : Remote code execution vulnerability exists in Microsoft SharePoint due to improper handling of objects in memory.

CVE-2019-1070 : Cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint does not properly sanitize a specially crafted web request to an affected SharePoint server.

CVE-2019-1328 : Spoofing vulnerability exists when Microsoft SharePoint does not properly sanitize a specially crafted web request to an affected SharePoint server.

CVE-2019-1329 : Elevation of privilege vulnerability exists when Microsoft SharePoint due to improve sanitization of specially crafted web request.

CVE-2019-0604 : Remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SharePoint application pool and the SharePoint server farm account.

Affected Products:
Microsoft SharePoint Server 2019
Microsoft SharePoint Server 2013 Service Pack 1
Microsoft SharePoint Server 2010 Service Pack 2
Microsoft SharePoint Foundation 2013 Service Pack 1
Microsoft SharePoint Foundation 2010 Service Pack 2
Microsoft SharePoint Enterprise Server 2016

QID Detection Logic (Unauthenticated):
This QID checks the "MicrosoftSharePointTeamServices" HTTP Request header to determine vulnerable version of Microsoft SharePoint running on the target system.

Successful exploitation of these vulnerabilities could allows an attacker to execute arbitrary code on the target system.

  • CVSS V3 rated as Critical - 9.8 severity.
  • CVSS V2 rated as Critical - 9.3 severity.
    • Solution
    Customers are advised to upgrade to latest version of SharePoint to remediate these vulnerabilities.

    For more information please refer to following Security advisories :
    CVE-2019-1330
    CVE-2019-1331
    CVE-2019-1070
    CVE-2019-1328
    CVE-2019-1329
    CVE-2019-0604

    Vendor References

    CVEs related to QID 150496

    CVE-2019-1330 | CVE-2019-1331 | CVE-2019-1070 | CVE-2019-1328 | CVE-2019-1329 | CVE-2019-0604 |
    Software Advisories
    Advisory ID Software Component Link
    CVE-2019-0604 URL Logo msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2019-0604
    CVE-2019-1070 URL Logo msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2019-1070
    CVE-2019-1328 URL Logo msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2019-1328
    CVE-2019-1329 URL Logo msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2019-1329
    CVE-2019-1330 URL Logo msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2019-1330
    CVE-2019-1331 URL Logo msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2019-1331
    By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].