SQL Server
CVE-2020-1044 — SQL Server Reporting Services Security Feature Bypass Vulnerability
Executive Summary
A security feature bypass vulnerability exists in SQL Server Reporting Services (SSRS) when the server improperly validates attachments uploaded to reports. An attacker who successfully exploited this vulnerability could upload file types that were disallowed by an administrator. To exploit the vulnerability, an authenticated attacker would need to send a specially crafted request to an affected SSRS server. The update addresses the vulnerability by modifying how SSRS validates attachment uploads.
Overview
4.3
CVSS MEDIUM
Moderate
MS Severity
Not Exploited
MS Exploit Status
Less Likely
MS Exploit Likelihood
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C
ATTACK VECTOR
Network
ATTACK COMPLEXITY
Low
PRIVILEGES REQUIRED
Low
USER INTERACTION
None
SCOPE
Unchanged
CONFIDENTIALITY
None
INTEGRITY
Low
AVAILABILITY
None
EXPLOIT CODE MATURITY
Proof-of-Concept
REMEDIATION LEVEL
Official Fix
REPORT CONFIDENCE
Confirmed
Temporal Score: 3.9
EPSS Score
0.01907
probability of exploitation in the next 30 days
0.77074 percentile - updated 2026-06-21
View on FIRST.org
Affected Products
2 affected products
| Product | KB Article | Severity | Impact | Restart Required |
|---|---|---|---|---|
| SQL Server 2017 Reporting Services | Release Notes (Security Update) |
Moderate | Security Feature Bypass | Maybe |
| SQL Server 2019 Reporting Services | Release Notes (Security Update) |
Moderate | Security Feature Bypass | Maybe |
Patches
1 patch
| Article | Type | Restart |
|---|---|---|
Release Notes |
Security Update | Maybe |
Known Exploits
No known exploits have been linked for this CVE yet. When available, exploit references will be sourced from public repositories and may be unverified, incomplete, or non-functional. Always review code carefully before use in any environment.
Acknowledgments
Piotr Cielas
References
On This Page