Privilege escalation in Microsoft SharePoint Server
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2023-36764 |
| CWE-ID | CWE-264 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Microsoft SharePoint Server Subscription Edition Server applications / Application servers Microsoft SharePoint Server Server applications / Application servers Microsoft SharePoint Enterprise Server Server applications / Application servers |
| Vendor | Microsoft |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Permissions, Privileges, and Access Controls
EUVDB-ID: #VU80710
Risk: Medium
CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2023-36764
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a remote user to escalate privileges on the system.
The vulnerability exists due to application does not properly impose security restrictions in Microsoft SharePoint Server, which leads to security restrictions bypass and privilege escalation.
MitigationInstall updates from vendor's website.
Vulnerable software versionsMicrosoft SharePoint Server Subscription Edition: before 16.0.16731.20180
Microsoft SharePoint Server: before 16.0.10402.20016
Microsoft SharePoint Enterprise Server: before 16.0.5413.1001
CPE2.3- cpe:2.3:a:microsoft:microsoft_sharepoint_server_subscription_edition:*:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:microsoft_sharepoint_server:*:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:microsoft_sharepoint_enterprise_server:*:*:*:*:*:*:*:*
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-36764
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
