Get the latest tech news

Microsoft said exploitation was 'less likely' ... but CISA just added SharePoint RCE to KEV list


Attackers need little more than a valid SharePoint account to execute code on vulnerable on-prem servers

None

Get the Android app

Or read this on The Register

Read more on:

Photo of Microsoft

Microsoft

Photo of CISA

CISA

Photo of exploitation

exploitation

Related news:

News photo

Is yet another Microsoft studio, Obsidian, negotiating with Xbox to avoid closure? Conflicting reports emerge

News photo

ConsentFix and ClickFix: How Microsoft 365 Accounts are Hijacked in 3 Seconds

News photo

Microsoft launches its own AI deployment company with $2.5 billion commitment