Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-29357

Published: 14/06/2023 Updated: 11/01/2024
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Microsoft

Vulnerability Summary

This vulnerability allows remote malicious users to bypass authentication on affected installations of Microsoft SharePoint. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ValidateTokenIssuer method. The issue results from the lack of proper verification of a cryptographic signature. An attacker can leverage this vulnerability to bypass authentication on the system.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft sharepoint server 2019

Vendor Advisories

Check Point Security Alerts: Microsoft SharePoint Server Authentication Bypass (CVE-2023-29357)
Check Point Reference: CPAI-2023-0419 Date Published: 13 Jun 2023 Severity: Critical ...

Exploits

Exploit DB: Sharepoint Dynamic Proxy Generator Remote Command Execution
This Metasploit module exploits two vulnerabilities in Sharepoint 2019 - an authentication bypass as noted in CVE-2023-29357 which was patched in June of 2023 and CVE-2023-24955 which was a remote command execution vulnerability patched in May of 2023 The authentication bypass allows attackers to impersonate the Sharepoint Admin user This vulnera ...

Github Repositories

https://github.com/Chocapikk/CVE-2023-29357

Microsoft SharePoint Server Elevation of Privilege Vulnerability

πŸ›‘ Microsoft SharePoint: CVE-2023-29357 πŸ›‘ Microsoft SharePoint Server Elevation of Privilege Vulnerability πŸ“Œ Summary: This script exploits a vulnerability (CVE-2023-29357) in Microsoft SharePoint Server allowing remote attackers to escalate privileges on affected installations of Microsoft SharePoint Server While this script focuses on elevation of privilege, attackers

https://github.com/LuemmelSec/CVE-2023-29357

Recreation of the SharePoint PoC for CVE-2023-29357 in C# with lots of help from ChatGPT Build with Net Version 472 in Visual Studio 2017 Use NuGet Package manager to install any missing packages Yara rules for detection below Usage: CVE-2023-29357exe http(s)://yoursharepointlol [-v] Huge shoutout to: Jang for being very supportive

https://github.com/KeyStrOke95/CVE-2023-29357-ExE

Recreation of the SharePoint PoC for CVE-2023-29357 in C# from LuemmelSec

CVE-2023-29357-ExE Recreation of the SharePoint PoC for CVE-2023-29357 in C# from LuemmelSec Usage: CVE-2023-29357exe http(s)://yoursharepointlol [-v]

https://github.com/Guillaume-Risch/cve-2023-29357-Sharepoint

CVE 2023 29357 Informations Cible SharePoint (Windows Server 2016 avec SharePoint 2019) Login : FSI\Administrateur Password : Admin123! IP : 192168564 Hostname : WIN-HEVUJ4GJMA6 Attanquant Lubuntu (Version 22043) Login : fsi Password : Admin123! IP : 192168563 Mise en place de l'e

Recent Articles

CISA tags Microsoft SharePoint RCE bug as actively exploited
BleepingComputer β€’ Sergiu Gatlan β€’ 27 Mar 2024

CISA tags Microsoft SharePoint RCE bug as actively exploited By Sergiu Gatlan March 27, 2024 12:24 PM 0 CISA warns that attackers are now exploiting a Microsoft SharePoint code injection vulnerability that can be chained with a critical privilege escalation flaw for pre-auth remote code execution attacks. Tracked as CVE-2023-24955, this SharePoint Server vulnerability enables authenticated attackers with Site Owner privileges to execute code remotely on vulnerable servers. The second flaw (...

Read more...
Exploit for under-siege SharePoint vuln reportedly in hands of ransomware crew
The Register

Topics Security Off-Prem On-Prem Software Offbeat Special Features Vendor Voice Vendor Voice Resources It’s taken months for crims to hack together a working exploit chain

Security experts claim ransomware criminals have got their hands on a functional exploit for a nearly year-old critical Microsoft SharePoint vulnerability that was this week added to the US's must-patch list. Without specifically identifying the gang, researcher Kevin Beaumont said that at least one ransomware group has a working exploit for the critical vulnerability, which can potentially achieve remote code execution (RCE) although the US Cybersecurity and Infrastructure Security Agency (CISA...

Read more...
June Patch Tuesday: VMware vuln under attack by Chinese spies, Microsoft kinda meh
The Register

Topics Security Off-Prem On-Prem Software Offbeat Special Features Vendor Voice Vendor Voice Resources Plus: Adobe, SAP and Android push updates

Microsoft has released security updates for 78 flaws for June's Patch Tuesday, and luckily for admins, none of these are under exploit. Yesterday's critical Fortinet bug and the ongoing Progress MOVEit flaws, however, are entirely different stories, so the proverbial thoughts and prayers to the teams dealing with those messes.  Microsoft's big patch day rated six of today's fixes as critical and four of these garnered a 9.8 severity score, so let's start with those. CVE-2023-29357, a Micros...

Read more...

References

NVD-CWE-noinfohttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29357https://nvd.nist.govhttps://packetstormsecurity.com/files/177802/Sharepoint-Dynamic-Proxy-Generator-Remote-Command-Execution.htmlhttps://github.com/Chocapikk/CVE-2023-29357https://www.zerodayinitiative.com/advisories/ZDI-23-882/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook