Generic filters
Exact matches only
Search in title
Search in content
Filter by Custom Post Type
Filter by Categories

CISA Warns: Microsoft SharePoint Vulnerability Attacked

CISA added Microsoft SharePoint Server’s CVE-2023-24955, a critical remote code execution vulnerability (a 7.2 CVSS score), to its KEV catalog due to active exploitation. Authenticated Site Owners can remotely execute code through this flaw, which Microsoft fixed in May 2023. This follows the earlier KEV listing of SharePoint’s CVE-2023-29357. Both vulnerabilities were linked in an exploit chain which combined them, at the Pwn2Own contest.



Cubic Lighthouse is a cybersecurity publication dedicated to demystifying security, making news actionable, providing deeper thinking about the fundamentals of security, and providing decision-makers and the community at large with the right information to make the right decisions. We will also feature more technical articles and provide personal/family security advice.

©2024 Cubic Consulting, a Smart Security Company for your Business – All Rights Reserved.