Customer guidance for SharePoint vulnerability CVE-2025-53770
MSRC
2025-07-19 15:00:00
收藏
Summary Microsoft is aware of active attacks targeting on-premises SharePoint Server customers. The attacks are exploiting a variant of CVE-2025-49706. This vulnerability has been assigned CVE-2025-53770. SharePoint Online in Microsoft 365 is not impacted. A patch is currently not available for this vulnerability. Mitigations and detections are provided below.
目录
最新
- Why XSS still matters: MSRC’s perspective on a 25-year-old threat
- BlueHat Asia 2025: Closing soon: Submit your papers by September 14, 2025
- postMessaged and Compromised
- Zero Day Quest: Join the largest hacking event with up to $5 million in total bounty awards
- .NET Bounty Program now offers up to $40,000 in awards
- .NET Bounty Program now offers up to $40,000 in awards
- How Microsoft defends against indirect prompt injection attacks
- Customer guidance for SharePoint vulnerability CVE-2025-53770