Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2024-38024: Microsoft SharePoint Server Remote Code Execution Vulnerability

According to the CVSS metric, privileges required is low (PR:H). What does that mean for this vulnerability?

An authenticated attacker with Site Owner permissions can use the vulnerability to inject arbitrary code and execute this code in the context of SharePoint Server.

Microsoft Security Response Center
#vulnerability#microsoft#rce#auth#Microsoft Office SharePoint#Security Vulnerability

Microsoft Security Response Center: Latest News

CVE-2024-49060: Azure Stack HCI Elevation of Privilege Vulnerability