Vulnerability Name: | CVE-2020-1147 (CCN-184292) |
Assigned: | 2019-11-04 |
Published: | 2020-07-14 |
Updated: | 2022-07-12 |
Summary: | A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'. |
CVSS v3 Severity: | 7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) 7.2 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C)Exploitability Metrics: | Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required | Scope: | Scope (S): Unchanged
| Impact Metrics: | Confidentiality (C): High Integrity (I): High Availibility (A): High | 9.8 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) 9.1 Critical (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C)Exploitability Metrics: | Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None | Scope: | Scope (S): Unchanged
| Impact Metrics: | Confidentiality (C): High Integrity (I): High Availibility (A): High | 8.8 High (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) 8.2 High (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C)Exploitability Metrics: | Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required | Scope: | Scope (S): Unchanged
| Impact Metrics: | Confidentiality (C): High Integrity (I): High Availibility (A): High |
|
CVSS v2 Severity: | 6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)Exploitability Metrics: | Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None | Impact Metrics: | Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial | 10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)Exploitability Metrics: | Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
| Impact Metrics: | Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete |
|
Vulnerability Type: | CWE-Other CWE-502
|
Vulnerability Consequences: | Gain Access |
References: | Source: MITRE Type: CNA CVE-2020-1147
Source: MISC Type: Exploit, Third Party Advisory, VDB Entry http://packetstormsecurity.com/files/158694/SharePoint-DataSet-DataTable-Deserialization.html
Source: MISC Type: Exploit, Third Party Advisory, VDB Entry http://packetstormsecurity.com/files/158876/Microsoft-SharePoint-Server-2019-Remote-Code-Execution.html
Source: MISC Type: Exploit, Third Party Advisory, VDB Entry http://packetstormsecurity.com/files/163644/Microsoft-SharePoint-Server-2019-Remote-Code-Execution.html
Source: XF Type: UNKNOWN ms-dotnet-cve20201147-code-exec(184292)
Source: CCN Type: Packet Storm Security [07-31-2020] SharePoint DataSet / DataTable Deserialization
Source: CCN Type: Packet Storm Security [08-17-2020] Microsoft SharePoint Server 2019 Remote Code Execution
Source: CCN Type: Packet Storm Security [07-23-2021] Microsoft SharePoint Server 2019 Remote Code Execution
Source: CCN Type: Microsoft Security TechCenter - July 2020 .NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability
Source: MISC Type: Patch, Vendor Advisory https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147
Source: CCN Type: CYBERSECURITY & INFRASTRUCTURE SECURITY AGENCY KNOWN EXPLOITED VULNERABILITIES CATALOG
Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [08-17-2020]
Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [07-23-2021]
Source: MISC Type: Exploit, Third Party Advisory https://www.exploitalert.com/view-details.html?id=35992
Source: CCN Type: Rapid7 Vulnerability and Exploit Database [07-30-2020] SharePoint DataSet / DataTable Deserialization
|
Vulnerable Configuration: | Configuration 1: cpe:/a:microsoft:.net_core:2.1:-:*:*:*:*:*:*OR cpe:/a:microsoft:.net_core:3.1:-:*:*:*:*:*:* Configuration 2: cpe:/a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*AND cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:* Configuration 3: cpe:/a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*AND cpe:/o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_8.1:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* Configuration 4: cpe:/a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_10:1607:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2016:-:*:*:*:*:*:*:* Configuration 5: cpe:/a:microsoft:.net_framework:4.6.1:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*AND cpe:/o:microsoft:windows_10:-:*:*:*:*:*:*:* Configuration 6: cpe:/a:microsoft:.net_framework:4.6.1:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*AND cpe:/o:microsoft:windows_10:-:*:*:*:*:*:*:* Configuration 7: cpe:/a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_10:1709:*:*:*:*:*:*:* Configuration 8: cpe:/a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_10:1803:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_1803:-:*:*:*:*:*:x64:*OR cpe:/o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_10:1809:*:*:*:*:*:*:* Configuration 9: cpe:/a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_10:1809:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_1903:-:*:*:*:*:*:x64:*OR cpe:/o:microsoft:windows_10:1903:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_1909:-:*:*:*:*:*:x64:*OR cpe:/o:microsoft:windows_10:1909:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_10:2004:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2004:-:*:*:*:*:*:x64:* Configuration 10: cpe:/a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*OR cpe:/o:microsoft:windows_7:-:sp1:*:*:*:*:*:* Configuration 11: cpe:/a:microsoft:.net_framework:4.5.2:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_8.1:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*OR cpe:/o:microsoft:windows_7:-:sp1:*:*:*:*:*:*OR cpe:/o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* Configuration 12: cpe:/a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:* Configuration 13: cpe:/a:microsoft:.net_framework:4.6.1:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_8.1:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*OR cpe:/o:microsoft:windows_7:-:sp1:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* Configuration 14: cpe:/a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_10:1607:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_8.1:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_7:-:sp1:*:*:*:*:*:*OR cpe:/o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_10:1709:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_10:1803:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_1803:-:*:*:*:*:*:x64:* Configuration 15: cpe:/a:microsoft:sharepoint_server:2010:sp2:*:*:*:*:*:*OR cpe:/a:microsoft:sharepoint_enterprise_server:2016:*:*:*:*:*:*:*OR cpe:/a:microsoft:sharepoint_enterprise_server:2013:sp1:*:*:*:*:*:*OR cpe:/a:microsoft:sharepoint_server:2019:*:*:*:*:*:*:*OR cpe:/a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:* (Version >= 16.0 and <= 16.6)OR cpe:/a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:* (Version >= 15.0 and <= 15.9) Configuration RedHat 1: cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:* Configuration RedHat 2: cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:* Configuration CCN 1: cpe:/a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*OR cpe:/a:microsoft:sharepoint_server:2010:sp2:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.5.2:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*OR cpe:/a:microsoft:sharepoint_enterprise_server:2016:-:*:*:*:*:*:*OR cpe:/a:microsoft:sharepoint_enterprise_server:2013:sp1:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_core:2.1:-:*:*:*:*:*:*OR cpe:/a:microsoft:sharepoint_server:2019:*:*:*:*:*:*:*OR cpe:/a:microsoft:visual_studio_2017:15.9:*:*:*:*:*:*:*OR cpe:/a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*OR cpe:/a:microsoft:visual_studio_2019:16.0:*:*:*:*:*:*:*AND cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x32:*OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x64:*OR cpe:/o:microsoft:windows_7:-:sp1:*:*:ultimate_n:*:x86:*OR cpe:/o:microsoft:windows_7::sp1:x64:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*OR cpe:/o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_8.1:-:-:-:*:-:-:x32:*OR cpe:/o:microsoft:windows_8.1:::~~~~x64~:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_10:-:*:*:*:*:*:x32:*OR cpe:/o:microsoft:windows_10:::~~~~x64~:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server:1803:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*OR cpe:/o:microsoft:windows_10:-:*:*:*:*:*:arm64:*OR cpe:/o:microsoft:windows_server:1903:*:*:*:*:*:*:*
Denotes that component is vulnerable |
Oval Definitions |
|
BACK |
microsoft .net core 2.1
microsoft .net core 3.1
microsoft .net framework 2.0 sp2
microsoft .net framework 3.0 sp2
microsoft windows server 2008 - sp2
microsoft .net framework 3.5
microsoft windows server 2012 r2
microsoft windows 8.1 -
microsoft windows server 2012 -
microsoft .net framework 4.6.2
microsoft .net framework 3.5
microsoft .net framework 4.7
microsoft .net framework 4.7.1
microsoft .net framework 4.7.2
microsoft windows 10 1607
microsoft windows server 2016 -
microsoft .net framework 4.6.1
microsoft .net framework 4.6
microsoft .net framework 4.6.2
microsoft .net framework 3.5
microsoft windows 10 -
microsoft .net framework 4.6.1
microsoft .net framework 4.6
microsoft .net framework 4.6.2
microsoft .net framework 3.5
microsoft windows 10 -
microsoft .net framework 3.5
microsoft .net framework 4.7.1
microsoft .net framework 4.7.2
microsoft windows 10 1709
microsoft .net framework 3.5
microsoft .net framework 4.7.2
microsoft windows 10 1803
microsoft windows server 2016 1803
microsoft windows server 2019 -
microsoft windows 10 1809
microsoft .net framework 3.5
microsoft .net framework 4.8
microsoft windows server 2019 -
microsoft windows 10 1809
microsoft windows server 2016 1903
microsoft windows 10 1903
microsoft windows server 2016 1909
microsoft windows 10 1909
microsoft windows 10 2004
microsoft windows server 2016 2004
microsoft .net framework 3.5.1
microsoft windows server 2008 r2 sp1
microsoft windows 7 - sp1
microsoft .net framework 4.5.2
microsoft windows server 2008 r2 sp1
microsoft windows server 2012 r2
microsoft windows 8.1 -
microsoft windows server 2008 - sp2
microsoft windows 7 - sp1
microsoft windows rt 8.1 -
microsoft windows server 2012 -
microsoft .net framework 4.6
microsoft windows server 2008 - sp2
microsoft .net framework 4.6.1
microsoft .net framework 4.6
microsoft .net framework 4.6.2
microsoft .net framework 4.7
microsoft .net framework 4.7.1
microsoft .net framework 4.7.2
microsoft windows server 2012 r2
microsoft windows 8.1 -
microsoft windows server 2008 r2 sp1
microsoft windows 7 - sp1
microsoft windows server 2012 -
microsoft .net framework 4.8
microsoft windows server 2008 r2 sp1
microsoft windows server 2012 r2
microsoft windows 10 1607
microsoft windows 8.1 -
microsoft windows server 2016 -
microsoft windows 7 - sp1
microsoft windows rt 8.1 -
microsoft windows server 2012 -
microsoft windows 10 1709
microsoft windows 10 1803
microsoft windows server 2016 1803
microsoft sharepoint server 2010 sp2
microsoft sharepoint enterprise server 2016
microsoft sharepoint enterprise server 2013 sp1
microsoft sharepoint server 2019
microsoft visual studio 2019 *
microsoft visual studio 2017 *
microsoft .net framework 2.0 sp2
microsoft .net framework 3.5
microsoft .net framework 3.5.1
microsoft .net framework 3.0 sp2
microsoft sharepoint server 2010 sp2
microsoft .net framework 4.5.2
microsoft .net framework 4.6
microsoft sharepoint enterprise server 2016 -
microsoft sharepoint enterprise server 2013 sp1
microsoft .net framework 4.7.2
microsoft .net core 2.1
microsoft sharepoint server 2019
microsoft visual studio 2017 15.9
microsoft .net framework 4.8
microsoft visual studio 2019 16.0
microsoft windows server 2008 sp2
microsoft windows server 2008 sp2
microsoft windows 7 - sp1
microsoft windows 7 sp1
microsoft windows server 2008 r2
microsoft windows server 2012
microsoft windows 8.1 - -
microsoft windows 8.1
microsoft windows server 2012 r2
microsoft windows rt 8.1 -
microsoft windows 10 -
microsoft windows 10
microsoft windows server 2016
microsoft windows server 1803
microsoft windows server 2019
microsoft windows 10 -
microsoft windows server 1903