CVE-2024-38094

Microsoft SharePoint Remote Code Execution Vulnerability

CVSS

No CVSS.

References

Link	Resource
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38094	Patch Vendor Advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38094	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:sharepoint_server:2019:::::::*
	cpe:2.3:a:microsoft:sharepoint_server:2016::::enterprise:::
	cpe:2.3:a:microsoft:sharepoint_server:-::::subscription:::

History

27 Jan 2025, 21:35

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~7.2~~	v2 : unknown v3 : unknown

11 Jul 2024, 18:27

Type	Values Removed	Values Added
References	~~() https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38094 -~~	() https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38094 - Patch, Vendor Advisory
First Time		Microsoft sharepoint Server Microsoft
CWE		CWE-502
CPE		cpe:2.3:a:microsoft:sharepoint_server:2016::::enterprise::: cpe:2.3:a:microsoft:sharepoint_server:-::::subscription::: cpe:2.3:a:microsoft:sharepoint_server:2019:::::::*

09 Jul 2024, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-07-09 17:15

Updated : 2025-01-27 21:35

NVD link : CVE-2024-38094

Mitre link : CVE-2024-38094

JSON object : View

Products Affected

microsoft

CWE

CWE-502

Deserialization of Untrusted Data