Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability
Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability
12 January 2024
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security vulnerability impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The issue, tracked as CVE-2023-29357 (CVSS score: 9.8), is a privilege escalation flaw that could be exploited by an attacker to gain