Vulnerability Manager Plus

WCF/WIF SAML Token Authentication Bypass Vulnerability for Microsoft SharePoint Enterprise Server 2013 (KB4475522)

Risk Information

Base Score

7.5

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS Score

Exploitation Probability

No records found

CVE Information

Source CVE
CVE-2019-1006

Associated CVE
CVE-2019-1006
CVE-2019-1134

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
27104

Patch Description
Security Update for Microsoft SharePoint Enterprise Server 2013 (KB4475522)

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2019-1006
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2019-1134
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1006
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1134