9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.3 High
AI Score
Confidence
High
0.89 High
EPSS
Percentile
98.8%
Microsoft SharePoint Server Elevation of Privilege Vulnerability
Recent assessments:
cbeek-r7 at January 17, 2024 10:31am UTC reported:
CVE-2023-29357 is a critical vulnerability in Microsoft SharePoint Server, classified as an Elevation of Privilege (EoP) flaw. . This vulnerability allows attackers to use spoofed JSON web tokens (JWTs) to gain Administrator privileges on the SharePoint host. The exploit does not require the attacker to have any privileges or for the user to perform any actionโโโ
The vulnerability was identified by Nguyแป n Tiแบฟn Giang (Jang) of StarLabs SG and demonstrated at ZDIโs Pwn2Own hacking contest in March 2023. In September 2023, a technical writeup of the flaw and its use in a two-bug exploit chain to achieve pre-authentication remote code execution (RCE) on the SharePoint server was published, along with proof-of-concept (PoC) code demonstrating the attackโ. Write-up link: <https://starlabs.sg/blog/2023/09-sharepoint-pre-auth-rce-chain/>
โโ
Assessed Attacker Value: 5
Assessed Attacker Value: 5Assessed Attacker Value: 4
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.3 High
AI Score
Confidence
High
0.89 High
EPSS
Percentile
98.8%