CVE-2024-30100

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Server (affected versions not specified) Microsoft SharePoint Server Subscription Edition (affected versions not specified) Microsoft SharePoint Enterprise Server (affected versions not specified)

Description The issue is related to the use of an unreliable path search in Microsoft SharePoint Server, allowing a remote attacker to execute arbitrary code using specially crafted files. This can affect the system.

Recommendations For Microsoft SharePoint Server, consider restricting access to sensitive areas of the system until a fix is available. For Microsoft SharePoint Server Subscription Edition, restrict the use of potentially vulnerable modules to minimize the risk of exploitation. For Microsoft SharePoint Enterprise Server, as a temporary workaround, consider disabling any features that may be using unreliable path searches until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.