VDB
CNVD-2023-72197
CNVD-2023-72197
PUBLISHED
CVSS 8.800000190734863 HIGH
Microsoft SharePoint是美国微软(Microsoft)公司的一套企业业务协作平台。该平台用于对业务信息进行整合,并能够共享工作、与他人协同工作、组织项目和工作组、搜索人员和信息。 Microsoft SharePoint存在远程代码执行漏洞,攻击者可利用该漏洞在系统上执行任意代码。
Risk Scores
CVSS v3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| microsoft | sharepoint_server | 16.0.0, 16.0.0, 16.0.0 |
| Microsoft | Microsoft SharePoint Enterprise Server 2016 | 16.0.0 |
| Microsoft | Microsoft SharePoint Server 2019 | 16.0.0 |
| Microsoft | Microsoft SharePoint Server Subscription Edition | 16.0.0 |
Timeline
- Jul 11, 2023 CVE Published
- Jul 12, 2023 PoC Published
- Jul 13, 2023 CVE ID Reserved
- Aug 23, 2023 PoC Published
- May 8, 2026 Security Advisory
References
- Microsoft SharePoint Remote Code Execution Vulnerability vendor-advisory