Vulnerability Details CVE-2023-24955
Microsoft SharePoint Server Remote Code Execution Vulnerability
Exploit prediction scoring system (EPSS) score
EPSS Score 0.921
EPSS Ranking 99.7%
CVSS Severity
CVSS v3 Score 7.2
Proposed Action
Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely.
Ransomware Campaign
Known
References
Products affected by CVE-2023-24955
-
cpe:2.3:a:microsoft:sharepoint_enterprise_server:2016
-
cpe:2.3:a:microsoft:sharepoint_server:-
-
cpe:2.3:a:microsoft:sharepoint_server:2019