December 3, 2023
Severity High Analysis Summary A new and sophisticated Android malware, named FjordPhantom, has been disclosed by cybersecurity researchers. The malware targets users in Southeast Asian countries, […]
Rewterz Threat Advisory – Multiple Microsoft Excel Vulnerabilities
November 10, 2022Rewterz Threat Alert – Eternity Project: Stealer – Active IOCs
November 10, 2022Rewterz Threat Advisory – Multiple Microsoft Excel Vulnerabilities
November 10, 2022Rewterz Threat Alert – Eternity Project: Stealer – Active IOCs
November 10, 2022
Severity
High
Analysis Summary
CVE-2022-41062 CVSS:8.8
Microsoft SharePoint Server could allow a remote authenticated attacker to execute arbitrary code on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2022-38053 CVSS:8.8
Microsoft SharePoint could allow a remote authenticated attacker to execute arbitrary code on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2022-41122 CVSS:6.5
Microsoft SharePoint Server could allow a remote authenticated attacker to conduct spoofing attacks.
Impact
Code Execution
Gain Access
Indicators Of Compromise
CVE
CVE-2022-41062
CVE-2022-38053
CVE-2022-41122
Affected Vendors
Microsoft
Affected Products
- Microsoft SharePoint Enterprise Server 2016
- Microsoft SharePoint Enterprise Server 2013 SP1
- Microsoft SharePoint Server 2019
- Microsoft SharePoint Server Subscription Edition
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.
CVE-2022-41062
CVE-2022-38053
CVE-2022-41122