Heimdal
article featured image

Contents:

In light of reports of active exploitation in the wild, the US Cybersecurity and Infrastructure Security Agency (CISA) has added a Microsoft Sharepoint Server security flaw to its list of Known Exploited Vulnerabilities (KEV).

This critical remote code execution vulnerability, with the tracking number CVE-2023-24955 and a CVSS score of 7.2, lets an authenticated attacker with Site Owner privileges execute arbitrary code.

Microsoft addressed this vulnerability in its May 2023 security updates.

The inclusion of CVE-2023-24955 in CISA’s catalog follows the earlier addition of another SharePoint flaw, CVE-2023-29357, which involves privilege escalation.

CVE-2023-29357 & CVE-2023-24955 can be used in exploit

Interestingly, a hacking team demonstrated using these two vulnerabilities together in an exploit at the Pwn2Own Vancouver contest, earning a $100,000 reward, says The Hacker News.

At this time, there’s no available data regarding specific incidents that have exploited these vulnerabilities or any information about the attackers involved.

Microsoft states that users who have activated automatic updates and selected the ‘Receive updates for other Microsoft products’ in their Windows Update preferences are protected.

To protect against this ongoing risk, Federal Civilian Executive Branch (FCEB) agencies must implement the recommended patches by April 16, 2024.

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice.

CISA Alert (source)

If you liked this article, follow us on LinkedIn, Twitter, Facebook, and Youtube, for more cybersecurity news and topics.

Heimdal Official Logo
Automate your patch management routine.

Heimdal® Patch & Asset Management Software

Remotely and automatically install Windows, Linux and 3rd party application updates and manage your software inventory.
  • Schedule updates at your convenience;
  • See any software assets in inventory;
  • Global deployment and LAN P2P;
  • And much more than we can fit in here...
Try it for FREE today 30-day Free Trial. Offer valid only for companies.
Author Profile

Madalina Popovici

Digital PR Specialist

linkedin icon

Madalina, a seasoned digital content creator at Heimdal®, blends her passion for cybersecurity with an 8-year background in PR & CSR consultancy. Skilled in making complex cyber topics accessible, she bridges the gap between cyber experts and the wider audience with finesse.

CHECK OUR SUITE OF 11 CYBERSECURITY SOLUTIONS

SEE MORE