CVE-2023-29357CISA KEV: Actively Exploited

Microsoft SharePoint Server Privilege Escalation Vulnerability

Published Jan 10, 2024·Updated Jan 10, 2024

Description

Microsoft SharePoint Server contains an unspecified vulnerability that allows an unauthenticated attacker, who has gained access to spoofed JWT authentication tokens, to use them for executing a network attack. This attack bypasses authentication, enabling the attacker to gain administrator privileges.

Public Exploits & PoCs4 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free