vulnerability
Microsoft SharePoint: CVE-2025-53770: Microsoft SharePoint Server Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Jul 19, 2025 | Jul 21, 2025 | Aug 12, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Jul 19, 2025
Added
Jul 21, 2025
Modified
Aug 12, 2025
Description
Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code over a network.
Microsoft is aware that an exploit for CVE-2025-53770 exists in the wild.
Microsoft is preparing and fully testing a comprehensive update to address this vulnerability. In the meantime, please make sure that the mitigation provided in this CVE documentation is in place so that you are protected from exploitation.
Solutions
microsoft-sharepoint-cve-2025-53770-cve-2025-53771microsoft-sharepoint-sharepoint_2016-kb5002759microsoft-sharepoint-sharepoint_2016-kb5002760microsoft-sharepoint-sharepoint_2019-kb5002753microsoft-sharepoint-sharepoint_2019-kb5002754microsoft-sharepoint-sharepoint_subscription_edition-kb5002768
References
- CVE-2025-53770
- https://attackerkb.com/topics/CVE-2025-53770
- CWE-502
- URL-https://msrc.microsoft.com/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770/
- URL-https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53770
- URL-https://support.microsoft.com/help/5002753
- URL-https://support.microsoft.com/help/5002754
- URL-https://support.microsoft.com/help/5002759
- URL-https://support.microsoft.com/help/5002760
- URL-https://support.microsoft.com/help/5002768
- URL-https://www.rapid7.com/blog/post/etr-zero-day-exploitation-of-microsoft-sharepoint-servers-cve-2025-53770/
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.