Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
312
VMScore

CVE-2020-0976

Published: 15/04/2020 Updated: 21/07/2021
CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8
CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3
VMScore: 312
Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N
Subscribe to Sharepoint Enterprise Server

Vulnerability Summary

A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft SharePoint Spoofing Vulnerability'. This CVE ID is unique from CVE-2020-0972, CVE-2020-0975, CVE-2020-0977.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft sharepoint enterprise server 2016

microsoft sharepoint foundation 2013

Github Repositories

https://github.com/ericzhong2010/GUI-Check-CVE-2020-0976

GUI Check CVE-2020-0796 勘误: 正确的CVE名称是CVE-2020-0796,而不是CVE-2020-0976。此程序不改了,知道就好的。 Information Microsoft SMBv3 contains a vulnerability in the handling of compression, which may allow a remote,unauthenticated attacker to execute arbitrary code on a vulnerable systemMicrosoft Server Message Block 311 (SMBv3) contains a vuln

https://github.com/dickens88/cve-2020-0796-scanner

This project is used for scanning cve-2020-0796 SMB vulnerability

cve-2020-0796-scanner This project is base on SMBGhost which is used for scanning CVE-2020-0796 - SMBv3 RCE vulnerability only add batch scanning function Usage python3 cve-2020-0796-scannerpy -t <IP/MASK> Workarounds Set-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters" Disabl

Recent Articles

Microsoft Patch Tuesday - April 2020
Symantec Threat Intelligence Blog • Preethi Koroth • 15 Apr 2024

This month the vendor has patched 113 vulnerabilities, 18 of which are rated Critical.

Posted: 15 Apr, 202029 Min ReadThreat Intelligence SubscribeMicrosoft Patch Tuesday - April 2020This month the vendor has patched 113 vulnerabilities, 18 of which are rated Critical.As always, customers are advised to follow these security best practices: Install vendor patches as soon as they are available. Run all software with the least privileges required while still maintaining functionality. Avoid handling files from unknown or questionable ...

Read more...

References

NVD-CWE-noinfohttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0976https://nvd.nist.govhttps://github.com/ericzhong2010/GUI-Check-CVE-2020-0976https://github.com/dickens88/cve-2020-0796-scannerhttps://www.symantec.com/blogs/threat-intelligence/microsoft-patch-tuesday-april-2020
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-47626CVE-2024-3400physicalCVE-2024-31426CVE-2024-22423CVE-2024-22438injectlocal usersCVE-2024-3797
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook