| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2024-43464 | Microsoft SharePoint Server Remote Code Execution Vulnerability | Microsoft SharePoint Server | Critical | 19-09-2024 |
Technical Information
In this vulnerability, the attacker having site owner permissions may be able to perform remote code execution by crafting a specialized API requests inside malicious file and uploading it to the targeted SharePoint Server for triggering deserialization of file’s parameters.
Patch release date: Sep 09, 2024
Further information on this vulnerability is available at : CVE-2024-43464
Affected Software
Microsoft SharePoint Enterprise Server 2016,Microsoft SharePoint Server 2019,
Microsoft SharePoint Server Subscription EditioN