CISA已知被利用漏洞
Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely.
所需操作:
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
截止日期:
2024-04-16
已知勒索软件使用
描述
Microsoft SharePoint Server Remote Code Execution Vulnerability
AI分析AI驱动
受影响产品
microsoftsharepoint_enterprise_server
2016
microsoftsharepoint_server
-
microsoftsharepoint_server
2019
参考资料
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24955PatchVendor Advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24955PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-24955US Government Resource