Headline
CVE-2024-21318: Microsoft SharePoint Server Remote Code Execution Vulnerability
According to the CVSS metric, privileges required is low (PR:L). What does that mean for this vulnerability?
An authenticated attacker with Site Owner permission can use the vulnerability to inject arbitrary code and execute this code in the context of SharePoint Server.