Description
SharePoint has an authentication bypass vulnerability. An attacker can bypass the authentication with a specially crafted JWT token and get full access to the system.
Remediation
Upgrade to the latest version of SharePoint
References
SharePoint Pre-Auth RCE chain (CVE-2023-29357 & CVE-2023-24955)
Microsoft SharePoint Server Elevation of Privilege Vulnerability
Related Vulnerabilities
WordPress Plugin WP Private Content Plus Security Bypass (1.31)
WordPress Plugin BuddyPress Security Bypass (2.3.4)
Drupal Core 9.0.x Security Bypass (9.0.0 - 9.0.5)
WordPress Plugin WP to Twitter Authorization Bypass (2.9.3)
WordPress Plugin WooCommerce BuddyPress Integration Security Bypass (3.2.5)