CVE CVE-2019-1031 Mappings

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'. This CVE ID is unique from CVE-2019-1032, CVE-2019-1033, CVE-2019-1036.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2019-1031 Microsoft SharePoint Foundation primary_impact T1059 Command and Scripting Interpreter
CVE-2019-1031 Microsoft SharePoint Foundation secondary_impact T1005 Data from Local System
CVE-2019-1031 Microsoft SharePoint Foundation secondary_impact T1565 Data Manipulation
CVE-2019-1031 Microsoft SharePoint Foundation secondary_impact T1485 Data Destruction
CVE-2019-1031 Microsoft SharePoint Foundation secondary_impact T1478 Install Insecure or Malicious Configuration
CVE-2019-1031 Microsoft SharePoint Foundation secondary_impact T1036 Masquerading