SharePoint Zero-Day Fix for CVE-2025-53770 & 53771
Published on August 8, 2024
Critical Security Alert
Immediate action is required to patch these vulnerabilities and protect your SharePoint environment.
Microsoft has released an urgent security update to address two critical zero-day vulnerabilities in SharePoint Server, identified as CVE-2025-53770 and CVE-2025-53771. These vulnerabilities could allow for remote code execution (RCE) and privilege escalation. Immediate patching is strongly recommended.
What You Need to Know
- CVE-2025-53770: A remote code execution vulnerability that can be exploited by an authenticated user with page creation permissions.
- CVE-2025-53771: A privilege escalation vulnerability that could allow an attacker to gain higher-level permissions on the server.
These vulnerabilities affect SharePoint Server 2016, 2019, and Subscription Edition. SharePoint Online is not affected.
Recommended Actions
- Apply Security Updates Immediately: Microsoft has released patches for all affected SharePoint versions. These should be deployed as soon as possible.
- Review User Permissions: As a precaution, review who has permissions to create new pages or sites within your SharePoint environment. Limit these permissions to trusted users only.
- Monitor for Suspicious Activity: Check server logs for any unusual activity, such as unexpected file uploads or changes in user privileges.
Need Help Securing Your SharePoint Environment?
Our security experts are on standby to assist with patch management, vulnerability assessment, and incident response. If you are concerned about these vulnerabilities, contact us immediately for support.
Get Emergency Security Support