SharePoint Server Information Disclosure Vulnerability
Key Information
- Vendor
- Microsoft
- Status
- Microsoft Sharepoint Enterprise Server 2016
- Microsoft Sharepoint Server 2019
- Microsoft Sharepoint Server Subscription Edition
- Vendor
- CVE Published:
- 14 May 2024
Badges
Summary
The vulnerability CVE-2024-30043 is a high-severity information disclosure vulnerability in Microsoft SharePoint Server with a CVSS score of 7.1, which can allow remote attackers to access sensitive information on affected installations of the software. The vulnerability requires authentication to exploit and is related to improper restriction of XML External Entity (XXE) references within the BaseXmlDataSource class. Attackers can leverage this vulnerability to disclose information in the context of the service account. Microsoft has issued an update to fix the vulnerability, and no known exploitation by ransomware groups has been reported.
Affected Version(s)
Microsoft SharePoint Enterprise Server 2016 < 16.0.5448.1000
Microsoft SharePoint Server 2019 < 16.0.10409.20047
Microsoft SharePoint Server Subscription Edition < 16.0.17328.20292
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
News Articles
SystemTek CVSS V3.1
Timeline
- ๐พ
Exploit exists.
Vulnerability started trending.
First article discovered by SystemTek
Vulnerability published.
Vulnerability Reserved.