SharePoint auth bypass via JWT spoofing — chained with CVE-2023-24955 RCE for full unauthenticated code execution. Apply June 2023 patches. Audit SharePoint admin activity and JWT validation configuration.
Microsoft SharePoint Server Elevation of Privilege Vulnerability allowing unauthenticated attackers to gain admin access via spoofed JWT authentication tokens.
Supernova subscribers receive AI-triaged CVE alerts the moment they're published — before the PoC drops.
Start Supernova — $99/mo →