Microsoft SharePoint vulnerability CVE-2019-0604 is under active attack, according to AT&T Alien Labs researchers, who cite instances of exploitation from around the world. CVE-2019-0604 is a remote code execution vulnerability that exists when SharePoint fails to verify the source markup of an application package.
Read full article on Dark Reading