|
|
|||
| Rule General Information |
|---|
| Release Date: | 2021-05-11 | |
| Rule Name: | Microsoft SharePoint Remote Code Execution Vulnerability (CVE-2021-31181) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Microsoft SharePoint is a set of enterprise business collaboration platform of Microsoft Corporation of the United States. The platform is used to integrate business information, and can share work, work collaboratively with others, organize projects and work groups, and search for people and information. A code injection vulnerability exists in Microsoft SharePoint. The following products and versions are affected: Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2019, Microsoft SharePoint Foundation 2013 Service Pack 1. | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows | |
| Reference: | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31181 ZeroDayInitiative:ZDI-21-573 |
|
| Solutions |
|---|
| The vendor has released upgrade patches to fix vulnerabilities, please visit: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31181 |