CVE-2021-24104

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Server (affected versions not specified) Microsoft SharePoint Enterprise Server (affected versions not specified) Microsoft SharePoint Foundation (affected versions not specified)

Description The issue exists due to insufficient input validation in Microsoft SharePoint packages, allowing an attacker to conduct spoofing attacks. This can affect the system.

Recommendations For Microsoft SharePoint Server, consider restricting access to vulnerable components until a fix is available. For Microsoft SharePoint Enterprise Server, restrict access to vulnerable modules to minimize the risk of exploitation. For Microsoft SharePoint Foundation, avoid using vulnerable parameters in affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.