CISA Known Exploited Vulnerability (KEV)
Microsoft SharePoint Server Code Injection Vulnerability
March 26, 2024
April 16, 2024
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Description
Microsoft SharePoint Server Remote Code Execution Vulnerability
Weakness Enumeration
CWE-ID | CWE Name |
---|---|
CWE-94 |
Improper Control of Generation of Code (‘Code Injection’) |