SERVER-WEBAPP -- Snort has detected traffic exploiting vulnerabilities in web based applications on servers.
SERVER-WEBAPP Microsoft SharePoint potential deserialization attempt
This rule is designed to look for the crafted URI and parameters as part of the exploitation process.
This rule alerts on potential attempts to exploit CVE-2021-27076 against SharePoint servers.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
N/A
Not Applicable
CVE-2021-27076 |
Loading description
|
Tactic: Initial Access
Technique: Exploit Public-Facing Application
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org