Uninitialized Variable Leads to Information Disclosure in Microsoft Project

Uninitialized Variable Leads to Information Disclosure in Microsoft Project

CVE-2020-1322 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

An information disclosure vulnerability exists when Microsoft Project reads out of bound memory due to an uninitialized variable, aka 'Microsoft Project Information Disclosure Vulnerability'.

Learn more about our Web Application Penetration Testing UK.