.. / CVE-2023-29357

Exploit for Microsoft SharePoint - Authentication Bypass (CVE-2023-29357)

Description:

Microsoft SharePoint Server Elevation of Privilege Vulnerability

Nuclei Template

View the template here CVE-2023-29357.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-29357.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2023-29357
https://github.com/Chocapikk/CVE-2023-29357
https://sec.vnpt.vn/2023/08/phan-tich-cve-2023-29357-microsoft-sharepoint-validatetokenissuer-authentication-bypass-vulnerability/
https://starlabs.sg/blog/2023/09-sharepoint-pre-auth-rce-chain/
https://srcincite.io/advisories/src-2020-0022/
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29357