Microsoft SharePoint Online Elevation of Privilege Vulnerability Allowing Remote Code Execution

Vulnerability

A vulnerability allowing elevation of privilege has been identified in Microsoft SharePoint Online. This issue arises from the deserialization of untrusted data, which could potentially be exploited to execute remote code. The vulnerability has been assigned a CVSS base score of 9.8, indicating critical severity.

Impact

Exploitation of this vulnerability could lead to unauthorized elevation of privilege, allowing an attacker to execute code remotely on the affected system.

Added: Nov 20, 2025, 11:19 PM

Updated: Nov 20, 2025, 11:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.7

remediation

0.0

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.7

remediation

0.0

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft SharePoint Online Elevation of Privilege Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Affected Products

Microsoft SharePoint Online

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating