Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

[email protected]NVD:CVE-2023-29357

HistoryJun 14, 2023 - 12:15 a.m.

Vulners
/
Nvd
/
CVE-2023-29357

CVE-2023-29357

2023-06-1400:15:09

CWE-303

[email protected]

web.nvd.nist.gov

microsoft

sharepoint

server

privilege

vulnerability

cve-2023-29357

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.885

Percentile

98.8%

JSON

Microsoft SharePoint Server Elevation of Privilege Vulnerability

Affected configurations

Nvd

Node

microsoftsharepoint_serverMatch2019

VendorProductVersionCPE
microsoftsharepoint_server2019cpe:2.3:a:microsoft:sharepoint_server:2019:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	sharepoint_server	2019	cpe:2.3:a:microsoft:sharepoint_server:2019:::::::*

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29357

mscve 1

attackerkb 1

cvelist 1

githubexploit 6

nuclei 1

cisa_kev 1

nessus 2

prion 1

cve 1

zdi 1

metasploit 1

packetstorm 1

hivepro 1

thn 4

zdt 1

rapid7blog 3

impervablog 1

mskb 2

krebs 1

malwarebytes 1

talosblog 1

kaspersky 1

qualysblog 1

avleonov 2

mscve

Microsoft SharePoint Server Elevation of Privilege Vulnerability

2023-06-13 07:00:00

attackerkb

CVE-2023-29357

2023-06-14 00:00:00

cvelist

CVE-2023-29357 Microsoft SharePoint Server Elevation of Privilege Vulnerability

2023-06-13 23:26:02

githubexploit

Exploit for Incorrect Implementation of Authentication Algorithm in Microsoft

2023-12-22 08:42:00

Exploit for Incorrect Implementation of Authentication Algorithm in Microsoft

2023-10-10 13:41:21

Exploit for Incorrect Implementation of Authentication Algorithm in Microsoft

2023-09-30 23:17:04

nuclei

Microsoft SharePoint - Authentication Bypass

2023-09-29 13:21:23

cisa_kev

Microsoft SharePoint Server Privilege Escalation Vulnerability

2024-01-10 00:00:00

nessus

Microsoft SharePoint Authentication Bypass (CVE-2023-29357)

2023-12-18 00:00:00

Security Updates for Microsoft SharePoint Server 2019 (June 2023)

2023-06-13 00:00:00

prion

Privilege escalation

2023-06-14 00:15:00

cve

CVE-2023-29357

2023-06-14 00:15:09

zdi

(Pwn2Own) Microsoft SharePoint ValidateTokenIssuer Improper Verification of Cryptographic Signature Authentication Bypass Vulnerability

2023-06-16 00:00:00

metasploit

Sharepoint Dynamic Proxy Generator Unauth RCE

2024-01-19 20:22:22

packetstorm

Sharepoint Dynamic Proxy Generator Remote Command Execution

2024-03-27 00:00:00

hivepro

Active Exploitation of Two Critical Flaws in Microsoft SharePoint

2024-01-15 12:56:34

thn

Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability

2024-01-12 06:35:00

CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability

2024-03-27 13:15:00

OpenRefine's Zip Slip Vulnerability Could Let Attackers Execute Malicious Code

2023-10-02 08:02:00

zdt

Sharepoint Dynamic Proxy Generator Remote Command Execution Exploit

2024-03-27 00:00:00

rapid7blog

Metasploit Weekly Wrap-Up 03/29/2024

2024-03-29 18:14:02

Patch Tuesday - January 2024

2024-01-09 21:23:10

Patch Tuesday - June 2023

2023-06-13 20:49:27

impervablog

Recent Vulnerabilities in Popular Applications Blocked by Imperva

2023-10-11 22:46:45

mskb

Description of the security update for SharePoint Server 2019: June 13, 2023 (KB5002402)

2023-06-13 07:00:00

Description of the security update for SharePoint Server 2019 Language Pack: June 13, 2023 (KB5002403)

2023-06-13 07:00:00

krebs

Microsoft Patch Tuesday, June 2023 Edition

2023-06-13 20:44:28

malwarebytes

Microsoft fixes six critical vulnerabilities in June Patch Tuesday

2023-06-14 05:00:00

talosblog

Microsoft discloses 5 critical vulnerabilities in June's Patch Tuesday, no zero-days

2023-06-13 18:43:16

kaspersky

KLA50318 Multiple vulnerabilities in Microsoft Office

2023-06-13 00:00:00

qualysblog

Microsoft and Adobe Patch Tuesday, June 2023 Security Update Review

2023-06-13 19:58:29

avleonov

Microsoft Patch Tuesday June 2023: Edge type confusion, Git RCE, OneNote Spoofing, PGM RCE, Exchange RCE, SharePoint EoP

2023-06-25 00:35:58

November 2023 – January 2024: New Vulristics Features, 3 Months of Microsoft Patch Tuesdays and Linux Patch Wednesdays, Year 2023 in Review

2024-02-01 17:07:20

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.885

Percentile

98.8%

JSON

Related for NVD:CVE-2023-29357

mscve1 attackerkb1 cvelist1 githubexploit6 nuclei1 cisa_kev1 nessus2 prion1 cve1 zdi1 metasploit1 packetstorm1 hivepro1 thn4 zdt1 rapid7blog3 impervablog1 mskb2 krebs1 malwarebytes1 talosblog1 kaspersky1 qualysblog1 avleonov2