CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a security flaw impacting the Microsoft Sharepoint Server to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation in the wild.
The vulnerability, tracked as CVE-2023-24955 (CVSS score: 7.2), is a critical remote code execution flaw that allows an authenticated attacker with

agency catalog cisa code code execution critical cve cvss cvss score cybersecurity exploitation exploited exploited vulnerabilities flaw hackers infrastructure infrastructure security kev known exploited known exploited vulnerabilities microsoft microsoft sharepoint remote code remote code execution score security security flaw server sharepoint vulnerabilities vulnerability