When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
The vulnerability is tracked as CVE-2023-24955, and carries a severity score of 7.2.
Such a vulnerability could be used for a number of things, frommalwaredeployment, to information stealing.
(Image credit: Shutterstock)
Those who have automatic updates enabled are most likely already protected, though.
Two months ago, CISA added a separate flaw, CVE-2023-29357, to KEV.
This flaw was chained together with the newly-added RCE last year, at the Pwn2Own Vancouver hacking contest.
Federal Civilian Executive Branch (FCEB) agencies have until April 16 this year to apply the patch.
Microsoft SharePoint is a web-based collaborative platform, available through the Microsoft 365 productivity suite.
It was first launched in 2001 as a document management and storage system.
It was also used to share information via intranet.
ViaTheHackerNews
