all InfoSec news
Stats for CVE-2023-36764 in Microsoft SharePoint Server
Sept. 19, 2023, 1:37 p.m. | /u/netlas_io
cybersecurity www.reddit.com
CVE: CVE-2023-36764Vulnerable product: Mirosoft SharePoint ServerBase score: 8.8 (High)
**In detail**
This vulnerability was discovered by Microsoft.Some SharePoint servers are vulnerable to Elevation of Privelege. Attacker could gain administrator privileges by creating an ASP.NET page with specially-crafted declarative markup. Only authorization at the Site Member level is required.
**Timeline**
CVE was published at 09/12/2023.Patch was uploaded at 09/12/2023.Vulnerability didn’t exploited before patch.
**Quantity estimation**
[Shodan – 2,572 instances](https://www.shodan.io/search?query=http.component%3A%22Microsoft+SharePoint%22)
Dork: http.component:"Microsoft SharePoint"
[Censys – 16,956 instances](https://search.censys.io/search?resource=hosts&sort=RELEVANCE&per_page=25&virtual_hosts=EXCLUDE&q=labels%3D%60microsoft-sharepoint%60)
Dork: labels=\`microsoft-sharepoint\`
[Netlas …
asp attacker authorization cve cybersecurity high information main markup microsoft microsoft sharepoint .net page privileges product score server servers sharepoint stats timeline vulnerability vulnerable
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Data Privacy Manager m/f/d)
@ Coloplast | Hamburg, HH, DE
Cybersecurity Sr. Manager
@ Eastman | Kingsport, TN, US, 37660
KDN IAM Associate Consultant
@ KPMG India | Hyderabad, Telangana, India
Learning Experience Designer in Cybersecurity (f/m/div.) (Salary: ~113.000 EUR p.a.*)
@ Bosch Group | Stuttgart, Germany
Senior Security Engineer - SIEM
@ Samsara | Remote - US