This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of custom workflows. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the web service account.
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft SharePoint |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Microsoft SharePoint vulnerability is ZDI-21-1224.
The title of this vulnerability is 'Microsoft SharePoint Workflow Deserialization of Untrusted Data Remote Code Execution Vulnerability'.
The severity of ZDI-21-1224 vulnerability is high with a severity value of 8.8.
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint.
Authentication is required to exploit this vulnerability.