Microsoft Office SharePoint
ADV240001 — Microsoft SharePoint Server Defense in Depth Update
None
2024-11 archive
Executive Summary
Microsoft has released a security update for Microsoft SharePoint Server. The update provides a defense in depth enhancement regarding redirections.
Overview
None
MS Severity
Not Exploited
MS Exploit Status
Less Likely
MS Exploit Likelihood
EPSS Score
No EPSS score available for this CVE.
View on FIRST.orgAffected Products
3 affected products
| Product | KB Article | Severity | Impact | Restart Required |
|---|---|---|---|---|
| Microsoft SharePoint Enterprise Server 2016 | 5002654 (Security Update) |
None | Defense in Depth | Yes |
| Microsoft SharePoint Server 2019 | 5002650 (Security Update) |
None | Defense in Depth | Yes |
| Microsoft SharePoint Server Subscription Edition | 5002651 (Security Update) |
None | Defense in Depth | Maybe |
Patches
3 patches
| Article | Type | Restart |
|---|---|---|
5002654 |
Security Update | Yes |
5002650 |
Security Update | Yes |
5002651 |
Security Update | Maybe |
Known Exploits
No known exploits have been linked for this CVE yet. When available, exploit references will be sourced from public repositories and may be unverified, incomplete, or non-functional. Always review code carefully before use in any environment.
Acknowledgments
Microsoft has not published researcher acknowledgments for this CVE, or they are not yet reflected in our data source. Check the MSRC advisory directly for the most current credit information.
References
On This Page