SERVER-WEBAPP Microsoft SharePoint EntityInstanceIdEncoder remote code execution attempt
This event is generated when an attacker attempts to exploit a remote code execution vulnerability in Microsoft SharePoint.
Attempted User Privilege Gain
This rule checks for attempts to exploit a remote code execution vulnerability in Microsoft SharePoint.
Ease of attack
- Cisco Talos Intelligence Group