Content-Type Spoofing Vulnerability in Microsoft Power BI Report Server

Content-Type Spoofing Vulnerability in Microsoft Power BI Report Server

CVE-2020-1173 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N

A spoofing vulnerability exists in Microsoft Power BI Report Server in the way it validates the content-type of uploaded attachments, aka 'Microsoft Power BI Report Server Spoofing Vulnerability'.

Learn more about our Cis Benchmark Audit For Server Software.