Unrated severityCISA KEVNVD Advisory· Published Mar 6, 2019· Updated Oct 21, 2025

CVE-2019-0604

Description

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0594.

Affected products

Microsoft/Microsoft SharePoint Enterprise Serverv5
Range: 2016
Microsoft/Microsoft SharePoint Foundationv5
Range: 2013 Service Pack 1
Microsoft/Microsoft SharePoint Serverv5
Range: 2010 Service Pack 2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/106914mitrevdb-entryx_refsource_BID
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0604mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.076
exploit	0.030
kev	0.120
patch	0.000
ransomware	0.060