Skip to content

Commit 5618d03

Browse files
CharlesRNCharlesRN
authored
Microsoft SharePoint Vulnerability Added in CISA Known Exploits (#1062)
Microsoft SharePoint Vulnerability Added in CISA Known Exploits - 20241024001
1 parent 461c196 commit 5618d03

File tree

1 file changed

+28
-0
lines changed

1 file changed

+28
-0
lines changed

docs/advisories/20241024001-Microsoft-Sharepoint-Server-Vulnerability.md

+28
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,28 @@
1+
# Microsoft SharePoint Vulnerability Added in CISA Known Exploits - 20241024001
2+
3+
## Overview
4+
5+
The WA SOC has been made aware of a vulnerability in Microsoft SharePoint deserialisation that allows remote code execution. A threat actor with Site Owner access could use this vulnerability to inject and execute arbitrary code within SharePoint Server.
6+
7+
## What is vulnerable?
8+
9+
| Product(s) | Versions | CVE # | Severity | CVSS |
10+
| ----------------------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------------------------------- | ---------- | ---- |
11+
| **Microsoft SharePoint Enterprise Server 2016**<br>**Microsoft SharePoint Server 2019**<br>**Microsoft SharePoint Server Subscription Edition** | 16.0.0 \< 16.0.5456.1000 <br> 16.0.0 \< 16.0.10412.20001 <br>16.0.0 \< 16.0.17328.20424 | [CVE-2024-38094](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38094) | **High** | 7.2 | |
12+
13+
## What has been observed?
14+
15+
There are currently no reports of these vulnerabilities being exploited in the wild at the time of publishing.
16+
17+
## Recommendation
18+
19+
The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of 48 hours (refer [Patch Management](../guidelines/patch-management.md)):
20+
21+
- SharePoint Server 2024 <https://support.microsoft.com/help/5002606>
22+
- SharePoint Server 2019 <https://support.microsoft.com/help/5002615>
23+
- SharePoint Server 2016 <https://support.microsoft.com/help/5002618>
24+
25+
## Additional References
26+
27+
- CISA: <https://www.cisa.gov/news-events/alerts/2024/10/22/cisa-adds-one-known-exploited-vulnerability-catalog>
28+
- Thehackernews: <https://thehackernews.com/2024/10/cisa-warns-of-active-exploitation-of.html>

0 commit comments

Comments
 (0)