RCE vulnerability in Microsoft SharePoint Server

The US Cybersecurity and Infrastructure Security Agency (CISA) warns of active attacks on a critical vulnerability (CVE-2024-38094) in Microsoft SharePoint servers. This security flaw affects the processing of unreliable deserialization data and allows authenticated attackers with site owner permissions to inject malicious code and execute it in the context of the server. Microsoft rates the vulnerability as high risk with a CVSS score of 7.2 and assumes that abuse is likely.

The Microsoft SharePoint Server Subscription Edition, Microsoft SharePoint Server 2019 and Microsoft SharePoint Enterprise Server 2016 in certain build versions are affected. The gap was already addressed by Microsoft patches in July 2024. IT managers should urgently install the available updates to minimize potential security risks. In addition to the SharePoint vulnerability, other security vulnerabilities were fixed on this patch day, including a critical gap in Hyper-V for Windows 11 and Server 2022.