CVE-2024-38094

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint versions prior to the fixed version

Description: The vulnerability in Microsoft SharePoint is related to deserialization and allows remote attackers to execute arbitrary code. This issue has been exploited in real-world attacks to gain initial access to corporate networks. The vulnerability is considered high-severity and has been added to the Known Exploited Vulnerabilities catalog. It affects various SharePoint products, including Microsoft SharePoint Server Subscription Edition, Microsoft SharePoint Server 2019, and Microsoft SharePoint Enterprise Server 2016. An authenticated attacker with Site Owner permissions could exploit this vulnerability to inject and execute arbitrary code within the SharePoint environment.

Recommendations: As a temporary workaround, consider disabling any unnecessary features or modules in Microsoft SharePoint until a patch is available. Restrict access to the SharePoint environment to minimize the risk of exploitation. Apply the patch for the deserialization vulnerability as soon as possible to prevent exploitation. Ensure that all SharePoint servers are updated to the latest version to prevent attacks leveraging this vulnerability.