CVE-2020-0618

⚠ KEVEPSS 94.2%

Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability

Added to CISA KEV: 9/18/2024

Description

Microsoft SQL Server Reporting Services contains a deserialization vulnerability when handling page requests incorrectly. An authenticated attacker can exploit this vulnerability to execute code in the context of the Report Server service account.

Affected packages (0)

No package mapping in OSV.