CVE-2023-29357, CVE-2023-24955 : Microsoft SharePoint 서버 취약점에 대한 익스플로잇 체인-블로그
Microsoft SharePoint 서버의 두 가지 취약점인 CVE-2023-29357 및 CVE-2023-24955의 익스플로잇 체인이 공개되어 무단 원격 코드 실행을 달성할 수 있다는 개념 증명이 9월 26일 Github에서 공개되었으며, 10월 2일 업데이트로 10개의 제품 적용 범위가 추가되었다.
CVE-2023-29357, CVE-2023-24955: Exploit Chain Released for Microsoft SharePoint Server Vulnerabilities - Blog
The concept proof of the unauthorized remote code execution was released on September 26, which was released on September 26, with two vulnerabilities of the Microsoft SharePoint server, which can be released to achieve unauthorized remote code execution by revealing an extent chain of CVE-2023-29357 and CVE-2023-24955.The update has added 10 product applications.