CVE-2020-17115

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Server (affected versions not specified) Microsoft SharePoint Enterprise Server (affected versions not specified) Microsoft SharePoint Foundation (affected versions not specified)

Description The issue exists due to insufficient input validation in Microsoft SharePoint Server, allowing a remote attacker to conduct spoofing attacks. This can affect the system.

Recommendations For Microsoft SharePoint Server, consider restricting access to vulnerable components until a patch is available. For Microsoft SharePoint Enterprise Server, restrict access to vulnerable modules to minimize the risk of exploitation. For Microsoft SharePoint Foundation, avoid using potentially vulnerable parameters in affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.