CVE-2013-1290

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Server 2013

Description An issue exists where access controls for a SharePoint list are not properly established, allowing remote authenticated users to bypass intended restrictions on reading list items. This is related to the way SharePoint Server enforces access controls on specific SharePoint Lists.

Recommendations For Microsoft SharePoint Server 2013, consider restricting access to sensitive SharePoint lists until a proper fix is applied to ensure default access controls are correctly established. As a temporary workaround, review and manually adjust access controls for affected lists to prevent unauthorized access.