CVE-2023-24955
7.2HIGHMicrosoft SharePoint Server Remote Code Execution Vulnerability
게시됨: 5/9/2023업데이트됨: 10/28/2025
CISA 알려진 악용 취약점
Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely.
필요한 조치:
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
마감일:
2024-04-16
알려진 랜섬웨어 사용
설명
Microsoft SharePoint Server Remote Code Execution Vulnerability
AI 분석AI 기반
영향받는 제품
microsoftsharepoint_enterprise_server
2016
microsoftsharepoint_server
-
microsoftsharepoint_server
2019
참조
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24955PatchVendor Advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24955PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-24955US Government Resource