CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Jan 31, 2024

CVE-2023-29357

High

EPSS 94.4%CISA KEVRansomware

Microsoft/SharePoint Server

Description

Microsoft SharePoint Server contains an unspecified vulnerability that allows an unauthenticated attacker, who has gained access to spoofed JWT authentication tokens, to use them for executing a network attack. This attack bypasses authentication, enabling the attacker to gain administrator privileges.

EPSS — Exploit Probability

94.4%

Higher than 100.0% of all CVEs

Required Action

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29357; https://nvd.nist.gov/vuln/detail/CVE-2023-29357

Risk Assessment

CRITICAL

In CISA KEV

High EPSS

Ransomware

Details

Severity: High
EPSS: 94.4%
CISA KEV: Yes
Ransomware: Known
Articles: 0

Timeline

Published

Jan 10, 2024

Added to KEV

Jan 10, 2024

Remediation Due

Jan 31, 2024

Affected Product

Microsoft

SharePoint Server

View all Microsoft CVEs

External Links

NVD (NIST)CVE Details MITRE CVE