Microsoft SharePoint Server Spoofing Vulnerability
CVE-2023-36891

8HIGH

Key Information:

Vendor: Microsoft
Status: Microsoft Sharepoint Server 2019; Microsoft Sharepoint Server Subscription Edition
Vendor: CVE Published:; 8 August 2023

What is CVE-2023-36891?

A spoofing vulnerability exists in Microsoft SharePoint Server that could allow an attacker to impersonate another user. This flaw can be exploited when an attacker sends a specially crafted request to a SharePoint server, enabling them to gain unauthorized access to sensitive information. Organizations utilizing affected versions of SharePoint Server should assess their systems and consider applying the recommended patches to mitigate potential risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Microsoft SharePoint Server 2019 x64-based Systems 16.0.0 < 16.0.10401.20025

Microsoft SharePoint Server Subscription Edition x64-based Systems 16.0.0 < 16.0.16130.20684

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 8, 2023
Vulnerability Reserved
Jun 27, 2023

JSON

Microsoft

What is CVE-2023-36891?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.