ZDI-21-1224 - Microsoft Sharepoint Server, Microsoft Sharepoint Foundation and Microsoft Sharepoint Enterprise Server

October 21, 2021

Critical 8.8

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint. Authentication is required to exploit this vulnerability.

Affected software

Microsoft Sharepoint Server

Microsoft Sharepoint Foundation

Microsoft Sharepoint Enterprise Server

Reference links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41344
http://www.zerodayinitiative.com/advisories/ZDI-21-1224/

ZDI-21-1224 - Microsoft Sharepoint Server, Microsoft Sharepoint Foundation and Microsoft Sharepoint Enterprise Server

Affected software

Reference links

Get alerted to vulnerabilities in your software