CVE-2024-38094
HIGH KEV RANSOMWAREMicrosoft SharePoint Server - Remote Code Execution via Untrusted Data Deserialization
Title source: llmExploitation Summary
CVE-2024-38094 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added October 22, 2024, with confirmed use in ransomware campaigns.
Description
Microsoft SharePoint Remote Code Execution Vulnerability
References (2)
Core 2
Core References
US Government Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-38094
Patch, Vendor Advisory vendor-advisory
patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38094
Scores
CVSS v3
7.2
EPSS
0.7032
EPSS Percentile
98.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
active
Automatable
no
Technical Impact
total
Details
CISA KEV
2024-10-22
VulnCheck KEV
2024-10-17
InTheWild.io
2024-10-22
ENISA EUVD
EUVD-2024-37782
Ransomware Use
Confirmed
CWE
CWE-502
Status
published
Products (3)
microsoft/sharepoint_server
microsoft/sharepoint_server
2016
microsoft/sharepoint_server
2019
Published
Jul 09, 2024
KEV Added
Oct 22, 2024
Tracked Since
Feb 18, 2026