Platform
sharepoint
Component
microsoft-sharepoint-server
Fixed in
16.0.5456.1000
16.0.10412.20001
16.0.17328.20424
CVE-2024-32987 is an Information Disclosure vulnerability affecting Microsoft SharePoint Server. This vulnerability allows an attacker to potentially access sensitive information within the SharePoint environment. It impacts versions 16.0.0 through 16.0.17328.20424. A security update has been released to address this issue.
Successful exploitation of CVE-2024-32987 could allow an attacker to gain unauthorized access to sensitive data stored within a SharePoint Server instance. The specific data exposed depends on the SharePoint configuration and permissions, but could include user credentials, internal documents, or other confidential information. This could lead to data breaches, reputational damage, and potential regulatory fines. While the vulnerability description doesn't detail a specific attack vector, the potential for information leakage makes it a significant security concern.
CVE-2024-32987 was publicly disclosed on July 9, 2024. As of this date, there are no publicly available proof-of-concept exploits. The vulnerability’s severity is rated HIGH (CVSS 7.5), indicating a moderate probability of exploitation. It is not currently listed on the CISA KEV catalog. Active campaigns targeting this vulnerability are not currently known.
Exploit Status
EPSS
3.74% (88% percentile)
CISA SSVC
CVSS Vector
The primary mitigation for CVE-2024-32987 is to upgrade Microsoft SharePoint Server to version 16.0.17328.20424 or later. Before applying the update, it's recommended to review Microsoft's documentation for any potential compatibility issues or breaking changes. Consider testing the update in a non-production environment first. If immediate patching is not possible, review SharePoint permissions and access controls to minimize the potential impact of a successful attack. Implement network segmentation to limit access to SharePoint servers. After the upgrade, verify the fix by attempting to reproduce the vulnerability using known attack patterns (if available) or by reviewing SharePoint logs for any suspicious activity.
Update Microsoft SharePoint Server to version 16.0.5456.1000, 16.0.10412.20001, or 16.0.17328.20424, or a later version as appropriate for your installation. See the Microsoft security bulletin for more details and instructions.
Vulnerability analysis and critical alerts directly to your inbox.
CVE-2024-32987 is a vulnerability in Microsoft SharePoint Server that could allow an attacker to access sensitive information. It has a CVSS score of 7.5 (HIGH) and affects versions 16.0.0–16.0.17328.20424.
If you are running Microsoft SharePoint Server versions 16.0.0 through 16.0.17328.20424, you are potentially affected by this vulnerability. Check your version and apply the security update.
The recommended fix is to upgrade to Microsoft SharePoint Server version 16.0.17328.20424 or later. Review Microsoft's documentation for upgrade instructions and potential compatibility issues.
As of July 9, 2024, there are no publicly known active exploitation campaigns targeting CVE-2024-32987, but the HIGH severity warrants prompt remediation.
Refer to the official Microsoft Security Update Guide for CVE-2024-32987: [https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-32987](https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-32987)
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.