CVE-2022-24472

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Server (affected versions not specified) Microsoft SharePoint Server Subscription Edition (affected versions not specified) Microsoft SharePoint Enterprise Server (affected versions not specified) Microsoft SharePoint Foundation (affected versions not specified)

Description The issue is related to errors in the representation of information by the user interface. It may allow a remote attacker to conduct spoofing attacks using a specially crafted server resource or website. The vulnerability can be exploited to affect the system.

Recommendations For Microsoft SharePoint Server, consider restricting access to vulnerable user interface components until a patch is available. For Microsoft SharePoint Server Subscription Edition, restrict access to vulnerable modules to minimize the risk of exploitation. For Microsoft SharePoint Enterprise Server, avoid using vulnerable features in the affected system until the issue is resolved. For Microsoft SharePoint Foundation, as a temporary workaround, consider disabling vulnerable functions until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.