Tagged: CVE-2023-24955

March 26, 2024

CISA Warns of Active CVE-2023-24955 Exploitation in Microsoft SharePoint Server

The Cybersecurity and Infrastructure Security Agency (CISA) has sounded the alarm regarding active attacks targeting a vulnerability in Microsoft SharePoint Server (CVE-2023-24955). This flaw has now joined CISA’s Known Exploited...

Vulnerability

December 16, 2023

PoC Released for SharePoint Pre-Auth RCE Chain (CVE-2023-29357 & CVE-2023-24955)

Two vulnerabilities in Microsoft SharePoint Server have recently come under the spotlight, thanks to the detailed work of STAR Labs researcher Nguyễn Tiến Giang (Jang). In March, at the Pwn2Own...