Intrusion PreventionMS.SharePoint.Server.Business.Data.Connectivity.Code.Injection
Description
This indicates an attack attempt to exploit a Remote Code Execution Vulnerability in Microsoft SharePoint Server.
The vulnerability is due to insufficient sanitization when handling a malicious request. A remote attacker may be able to exploit this to disclose data or execute arbitrary code within the context of the application.
Affected Products
Microsoft SharePoint Enterprise Server 2016
Microsoft SharePoint Server 2019
Microsoft SharePoint Server Subscription Edition
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30044
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38023
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38024
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38094
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2026-02-03 | 35.162 |
Modified
|
Sig Added |
| 2026-01-21 | 35.155 |
Modified
|
Sig Added |
| 2025-01-16 | 29.938 |
Modified
|
Sig Added |
| 2024-10-28 | 28.891 |
Modified
|
Sig Added |
| 2024-10-23 | 28.889 |
Modified
|
Name:MS. SharePoint. Server. CVE-2024-30044. Remote. Code. Execution:MS. SharePoint. Server. Business. Data. Connectivity. Code. Injection |
| 2024-06-11 | 28.804 |
Modified
|
Sig Added |
| 2024-06-06 | 28.802 |
Modified
|
Default_action:pass:drop |
| 2024-05-14 | 27.787 |
New
|
| ID | 55760 |
| Created | May 14, 2024 |
| Updated | Feb 07, 2026 |
| CVE ID | |
| Risk |
|
| Known Exploited | Yes |
| Exploit Prediction Score | 64.78% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |
| Profile Type | Code Injection |