"Ransomware Crew Reportedly Exploiting Critical Microsoft SharePoint Bug, CISA Warns"

January 12, 2024 at 07:24 PM

•

1 min read

"Ransomware Crew Reportedly Exploiting Critical Microsoft SharePoint Bug, CISA Warns" — Photo: BleepingComputer

TL;DR Summary

CISA warns of active exploitation of a critical Microsoft SharePoint privilege escalation vulnerability (CVE-2023-29357) that allows attackers to gain admin privileges by spoofing JWT auth tokens. This flaw can be chained with another critical bug (CVE-2023-24955) for remote code execution. A proof-of-concept exploit has been released on GitHub, and other PoC exploits have surfaced online, making it easier for threat actors to deploy attacks. CISA has added the vulnerability to its Known Exploited Vulnerabilities Catalog and mandated U.S. federal agencies to patch it by January 31.

Topics:technology #cisa #cybersecurity #exploit #microsoft-sharepoint #remote-code-execution #vulnerability

Share this article

CISA: Critical Microsoft SharePoint bug now actively exploited BleepingComputer
Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability The Hacker News
Exploit for under-siege SharePoint vuln reportedly in hands of ransomware crew The Register
CISA: Attacks exploiting Microsoft SharePoint flaw underway SC Media
CISA adds patched MS SharePoint server vulnerability to KEV catalog CSO Online

Reading Insights

Total Reads

Unique Readers

Time Saved

1 min

vs 2 min read

Condensed

76%

355 → 86 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights