Lucene search
MicrosoftVULNRICHMENT:CVE-2023-24955HistoryMay 09, 2023 - 5:03 p.m.
CVE-2023-24955 Microsoft SharePoint Server Remote Code Execution Vulnerability
2023-05-0917:03:01
CWE-94
microsoft
github.com
3
microsoft sharepoint
remote code execution
vulnerability
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
7.1 High
AI Score
Confidence
Low
0.707 High
EPSS
Percentile
98.1%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft SharePoint Enterprise Server 2016",
"cpes": [
"cpe:2.3:a:microsoft:sharepoint_server:2016:*:*:*:enterprise:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "16.0.0",
"lessThan": "16.0.5395.1000",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft SharePoint Server 2019",
"cpes": [
"cpe:2.3:a:microsoft:sharepoint_server:2019:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "16.0.0",
"lessThan": "16.0.10398.20000",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft SharePoint Server Subscription Edition",
"cpes": [
"cpe:2.3:a:microsoft:sharepoint_server:-:*:*:*:subscription:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "16.0.0",
"lessThan": "16.0.16130.20420",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
cisa_kev
cisa_kev
Microsoft SharePoint Server Code Injection Vulnerability
2024-03-26 00:00:00
hackread
hackread
CISA Urges Patching Microsoft SharePoint Vulnerability (CVE-2023-24955)
2024-03-28 17:24:22
githubexploit
githubexploit
Exploit for Code Injection in Microsoft
2023-12-28 09:08:47
prion
prion
Remote code execution
2023-05-09 18:15:00
attackerkb
attackerkb
CVE-2023-24955
2023-05-09 00:00:00
nvd
nvd
CVE-2023-24955
2023-05-09 18:15:13
cve
cve
CVE-2023-24955
2023-05-09 18:15:13
mscve
mscve
Microsoft SharePoint Server Remote Code Execution Vulnerability
2023-05-09 07:00:00
cvelist
cvelist
thn
thn
Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability
2024-01-12 06:35:00
CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability
2024-03-27 13:15:00
zdt
zdt
Sharepoint Dynamic Proxy Generator Remote Command Execution Exploit
2024-03-27 00:00:00
zdi
zdi
packetstorm
packetstorm
Sharepoint Dynamic Proxy Generator Remote Command Execution
2024-03-27 00:00:00
metasploit
metasploit
Sharepoint Dynamic Proxy Generator Unauth RCE
2024-01-19 20:22:22
hivepro
hivepro
Active Exploitation of Two Critical Flaws in Microsoft SharePoint
2024-01-15 12:56:34
mskb
mskb
nessus
nessus
Security Updates for Microsoft SharePoint Server 2019 (May 2023)
2023-05-10 00:00:00
Security Updates for Microsoft SharePoint Server 2016 (May 2023)
2023-05-10 00:00:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up 03/29/2024
2024-03-29 18:14:02
Patch Tuesday - May 2023
2023-05-09 20:02:02
kaspersky
kaspersky
KLA49155 Multiple vulnerabilities in Microsoft Office
2023-05-09 00:00:00
avleonov
avleonov
talosblog
talosblog
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, May 2023 Security Update Review
2023-05-09 21:24:08
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
7.1 High
AI Score
Confidence
Low
0.707 High
EPSS
Percentile
98.1%
Related for VULNRICHMENT:CVE-2023-24955