VDB
CVE-2023-24950
CVE-2023-24950
PUBLISHED
Es existiert eine Schwachstelle in Microsoft SharePoint und Microsoft SharePoint Server 2019. Microsoft veröffentlicht keine weiteren Details zur Schwachstelle. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um Dateien zu manipulieren.
EPSS 28.39% · 96.6th percentile
Risk Scores
EPSS Score
28.39%
96.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft SharePoint Server Subscription Edition | |
| Microsoft | Microsoft SharePoint Enterprise Server 2016 | |
| Microsoft | Microsoft SharePoint Server 2019 |
Timeline
- May 9, 2023 CVE Published
- May 10, 2023 EPSS Score
- Jun 16, 2023 EPSS Score
- Aug 28, 2023 EPSS Score
- Oct 4, 2023 EPSS Score
- Dec 16, 2023 EPSS Score
- Jan 22, 2024 EPSS Score
- Apr 4, 2024 EPSS Score
- May 11, 2024 EPSS Score
- Jul 23, 2024 EPSS Score
- Aug 29, 2024 EPSS Score
- Nov 10, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1179.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1179 advisory
- https://msrc.microsoft.com/update-guide advisory
- https://thehackernews.com/2024/01/act-now-cisa-flags-active-exploitation.html exploit