CVE-2025-53770

Published Jul 20, 2025

Last updated 6 days ago

Exploit knownCVSS critical 9.8
Microsoft SharePoint
ToolShell

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-53770 involves a deserialization of untrusted data vulnerability within on-premises Microsoft SharePoint Server. This flaw allows an unauthorized attacker to execute code over a network. Microsoft is aware that an exploit for this vulnerability is currently in the wild. Microsoft is actively preparing and testing a comprehensive update to address CVE-2025-53770. In the meantime, it is recommended that organizations review and apply the mitigations specified in Microsoft's CVE documentation to protect against potential exploitation.

Description
Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code over a network. Microsoft is aware that an exploit for CVE-2025-53770 exists in the wild. Microsoft is preparing and fully testing a comprehensive update to address this vulnerability. In the meantime, please make sure that the mitigation provided in this CVE documentation is in place so that you are protected from exploitation.
Source
secure@microsoft.com
NVD status
Modified
Products
sharepoint_server

Insights

Analysis from the Intruder Security Team
Published Jul 21, 2025 Updated Jul 23, 2025

This is a critical remote code execution vulnerability in Sharepoint when used on-prem - Sharepoint for Microsoft 365 is not affected. It is a variant of a previous bug which, in combination with CVE-2025-53771, allows an unauthenticated attacker to use a deserialization vulnerability to run code on the server.

If you host a Sharepoint instance you should immediately apply the security update and review the advice on this Microsoft page. Paying particular attention to the sections describing how to rotate your Machine Key and detect if you were already compromised.

As there was a lag time between information on this vulnerability being available to attackers and the availability of the patch, there has been active exploitation of Sharepoint instances during this period.

We have deployed an active check (11am 22nd July) and set off an Emerging Threat Scan for all of our Enterprise customers. In addition, we are committing this to the public Nuclei templates repository so that you can check your systems via Intruder - or for free via Nuclei as soon as the request is merged.

Risk scores

CVSS 3.1

Type
Secondary
Base score
9.8
Impact score
5.9
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
CRITICAL

Known exploits

Data from CISA

Vulnerability name
Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
Exploit added on
Jul 20, 2025
Exploit action due
Jul 21, 2025
Required action
Disconnect public-facing versions of SharePoint Server that have reached their end-of-life (EOL) or end-of-service (EOS) to include SharePoint Server 2013 and earlier versions. For supported versions, please follow the mitigations according to CISA (URL listed below in Notes) and vendor instructions (URL listed below in Notes). Adhere to the applicable BOD 22-01 guidance for cloud services or discontinue use of the product if mitigations are not available.

Weaknesses

secure@microsoft.com
CWE-502

Social media

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score

1

  1. Actively exploited CVE : CVE-2025-53770

    @transilienceai

    26 Oct 2025

    30 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  2. Warlock ransomware, associated with Chinese threat actors, is exploiting a zero-day in Microsoft SharePoint (vulnerability (CVE-2025-53770)) to deploy ransomware across diverse sectors, exposing organizations to data encryption and exfiltration. This sophisticated attack

    @cybernewslive

    25 Oct 2025

    94 Impressions

    1 Retweet

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Hackearon una planta de armas nucleares de EE. UU. a través de vulnerabilidades en Microsoft SharePoint  Los atacante se cree que están asociados con China han aprovechado la vulnerabilidad ToolShell ( CVE-2025-53770 ) https://t.co/zFnkxtaFIN

    @elhackernet

    25 Oct 2025

    9711 Impressions

    62 Retweets

    210 Likes

    49 Bookmarks

    2 Replies

    2 Quotes

  4. 🚨 Warlock ransomware hits via SharePoint 0-day (CVE-2025-53770). Storm-2603 link, uses BYOVD + DLL sideload to evade EDR. Files → .x2anylock (Anylock/LockBit mix). #SharePoint #APT #Darkweb #Deepweb More darkweb and cybersecurity updates here: https://t.co/ZF7G3lwjoe https:

    @godeepweb

    25 Oct 2025

    108 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Actively exploited CVE : CVE-2025-53770

    @transilienceai

    25 Oct 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  6. 中国系ハッカーがMicrosoft SharePointのToolShell脆弱性(CVE-2025-53770)を悪用、世界規模で政府機関・企業を攻撃 https://t.co/MKVHpRsaxR

    @torinome_navi

    25 Oct 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. 🇺🇸 🚨 Warlock exploiting Microsoft SharePoint "ToolShell" zero-day (CVE-2025-53770), discovered 19 Jul 2025 — deploying ransomware across multiple organizations, including U.S. entities. Severity 8.0/10. https://t.co/d3KMmHocXw #Cybersecurity #OSINT

    @STRATINT_AI

    24 Oct 2025

    90 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. Actively exploited CVE : CVE-2025-53770

    @transilienceai

    24 Oct 2025

    32 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  9. Chinese-linked hackers exploited the ToolShell SharePoint vulnerability (CVE-2025-53770) shortly after Microsoft’s patch, targeting telecoms in the Middle East and beyond using loaders like Zingdoor and KrustyLoader. #ToolShell #MiddleEast https://t.co/UZ6v5n6Gn9

    @TweetThreatNews

    24 Oct 2025

    12 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. Sharepoint ToolShell attacks targeted orgs across four continents. The ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint in attacks targeting government agencies, universities, telecommunication service providers, and finance organizations. https://t.co/dJeSmDfLk5

    @riskigy

    23 Oct 2025

    58 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. اگر sharepoint دارید حتما آسیب پذیری با کد شناسایی CVE-2025-53770 را پچ کنید . باج افزاری به نام Warlock از این آسیب پذیری برای گرفتن دسترسی ، استفاده می کند. https://t.co/vlBgMReIh7

    @EthicalSafe

    23 Oct 2025

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  12. 中国の攻撃者がSharePointのToolShell脆弱性(CVE-2025-53770)を用いてアフリカや南米の政府機関、大学や電気通信事業者への攻撃を行っている。シマンテック及びVMware報告。アクセス後はZingdoor, ShadowPad, KrustyLoader等中

    @__kokumoto

    22 Oct 2025

    877 Impressions

    2 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  13. 🔥 𝐒𝐡𝐚𝐫𝐞𝐩𝐨𝐢𝐧𝐭 𝐓𝐨𝐨𝐥𝐒𝐡𝐞𝐥𝐥 𝐚𝐭𝐭𝐚𝐜𝐤𝐬 𝐭𝐚𝐫𝐠𝐞𝐭𝐞𝐝 𝐨𝐫𝐠𝐬 𝐚𝐜𝐫𝐨𝐬𝐬 𝐟𝐨𝐮𝐫 𝐜𝐨𝐧𝐭𝐢𝐧𝐞𝐧𝐭𝐬 • Hackers exploited ToolShell v

    @PurpleOps_io

    22 Oct 2025

    44 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. 🕵️‍♂️ Security | China-Linked Attacks 🌐 ToolShell vulnerability (CVE-2025-53770) exploited in SharePoint attacks hitting govs, universities & telecoms worldwide. #SharePoint #China #CyberEspionage #Vulnerability https://t.co/YGZVyGLzLw

    @Strivehawk

    22 Oct 2025

    45 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. Chinese Hackers Exploit SharePoint Flaw Weeks After Patch Chinese threat actors exploited the patched CVE-2025-53770 in SharePoint to breach multiple targets, including telecom, government, and a university. The zero-day, weaponized by groups like Linen and Violet Typhoon, https

    @Secwiserapp

    22 Oct 2025

    46 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  16. 中国関与が疑われるハッカー集団が、Microsoft SharePointのゼロデイ脆弱性「ToolShell」(CVE-2025-53770)を悪用し、政府機関、大学、通信、金融分野を標的に攻撃を展開していることが明らかになった。

    @yousukezan

    22 Oct 2025

    4667 Impressions

    14 Retweets

    33 Likes

    9 Bookmarks

    0 Replies

    0 Quotes

  17. China-linked hackers exploited SharePoint's ToolShell (CVE-2025-53770) in global attacks on gov, academic, telco, & finance orgs. Read more! https://t.co/7BDEfOyQDE #SharePoint #ToolShell #CyberAttack

    @0xT3chn0m4nc3r

    22 Oct 2025

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  18. 📌 استهدف قراصنة يُعتقد أنهم مرتبطون بالصين ثغرة ToolShell (CVE-2025-53770) في Microsoft SharePoint، مما أدى إلى هجمات على وكالات حكومية وجامعات ومقدمي خدمات الاتصالات والمؤس

    @Cybercachear

    22 Oct 2025

    44 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  19. 【アーカイブ】 最新のSharePoint脆弱性とその対策を徹底解説! SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/NCC59MrmLD #cybernote #ブログ仲間と繋がりたい #Web

    @Teeeda_worker

    20 Oct 2025

    23 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  20. It only took me a lil bit of time to reverse the Sharepoint exploit for mass exploitation from the poc CVE-2025-53770 Turns out there are two binary gadgets, to execute a stack pivot to run commands or IL shellcode. Dude did everything for me. https://t.co/8Qwc96jMoQ

    @riley_huds67090

    17 Oct 2025

    19 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    1 Reply

    0 Quotes

  21. 【アーカイブ】 SharePointの新たな脆弱性に対応する方法を解説! SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abnlK5 #cybernote #ブログ仲間と繋がりたい #We

    @CyberNote_media

    15 Oct 2025

    24 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  22. 【アーカイブ】 最新ゼロデイ脆弱性の概要と対策をチェック! SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abnlK5 #cybernote #ブログ仲間と繋がりたい #Web

    @CyberNote_media

    13 Oct 2025

    34 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  23. CVE-2025-53770: SharePoint RCE (ToolShell) Exploit: https://t.co/PxGMti0Daz Upd: https://t.co/7rD7rOjUi2 ysonet.exe -p sharepoint --cve=CVE-2025-49704 -var 1 -c "calc" ysonet.exe -p sharepoint --cve=CVE-2025-49704 -var 2 -c "C:\\temp\\ExploitClass.cs;System.dll" Patched:

    @HackingTeam777

    12 Oct 2025

    9382 Impressions

    46 Retweets

    177 Likes

    93 Bookmarks

    3 Replies

    0 Quotes

  24. 【アーカイブ】 SharePointの緊急脆弱性!企業が取るべき対策を解説します。 SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/NCC59MrUBb #cybernote #ブログ仲間と繋

    @Teeeda_worker

    11 Oct 2025

    1 Impression

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  25. GitHub - soltanali0/CVE-2025-53770-Exploit: SharePoint WebPart Injection Exploit Tool https://t.co/KsfBFjetkl

    @akaclandestine

    10 Oct 2025

    6247 Impressions

    24 Retweets

    110 Likes

    50 Bookmarks

    1 Reply

    0 Quotes

  26. 【アーカイブ】 SharePointの脆弱性と対策を徹底解説!企業必読です。 SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/NCC59MrmLD #cybernote #ブログ仲間と繋がりた

    @Teeeda_worker

    8 Oct 2025

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  27. 【アーカイブ】 最新のSharePoint脆弱性の詳細と対策を解説!必見です。 SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abnlK5 #cybernote #ブログ仲間と繋がり

    @CyberNote_media

    8 Oct 2025

    3 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  28. Active exploitation of vulnerability affecting Microsoft Office SharePoint Server products in the UK The NCSC is encouraging UK organisations to take immediate action to mitigate a vulnerability (CVE-2025-53770) affecting Microsoft SharePoint Server products. The NCSC is enco..

    @SecurityAid

    7 Oct 2025

    30 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  29. 【アーカイブ】 必読!SharePointの最新脆弱性と対策を詳しく解説します。 SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abmNUx #cybernote #ブログ仲間と繋が

    @CyberNote_media

    7 Oct 2025

    24 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  30. SharePoint Under Attack: Microsoft Warns of Zero-Day Exploited in the Wild – No Patch Available Enterprises running SharePoint servers should not wait for a fix for CVE-2025-53770 and should commence threat hunting to search for compromise immediately. The post SharePoint Und.

    @SecurityAid

    5 Oct 2025

    64 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  31. 🚨 Mass exploitation of SharePoint vulnerability CVE-2025-53770. Once a sharepoint is found they blast it with many CVEs. 0/95 community score on @virustotal https://t.co/DCJCcgm6S8

    @LupovisDefence

    3 Oct 2025

    176 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    1 Quote

  32. We’ve taken CVE-2025-53770, the SharePoint vuln flagged in July, and are using it in our deception environments to watch real adversaries attempt exploitation in controlled settings. Translating those behaviors into actionable threat intelligence 👇 https://t.co/qSP1jWYXVS h

    @countercraftsec

    2 Oct 2025

    54 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  33. Threat actors are exploiting CVE-2025-53770, a critical Microsoft #SharePoint vulnerability, to gain initial access to victim networks – notably across the public sector. Find a free download of Rapid7's September Threat Report in our latest blog ⤵️ https://t.co/wFfnuqhFFR

    @rapid7

    30 Sept 2025

    718 Impressions

    0 Retweets

    0 Likes

    2 Bookmarks

    1 Reply

    0 Quotes

  34. 【アーカイブ】 SharePointの脆弱性と対策を徹底解説!必読です。 SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abmNUx #cybernote #ブログ仲間と繋がりたい #We

    @CyberNote_media

    26 Sept 2025

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  35. 【アーカイブ】 最新のゼロデイ脆弱性とその対策を詳しく解説! SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abnlK5 #cybernote #ブログ仲間と繋がりたい #

    @CyberNote_media

    25 Sept 2025

    45 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  36. 【アーカイブ】 最新のSharePoint脆弱性と対策を詳しく解説!必見です。 SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abmNUx #cybernote #ブログ仲間と繋がり

    @CyberNote_media

    24 Sept 2025

    36 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  37. Top 5 Trending CVEs: 1 - CVE-2025-53770 2 - CVE-2025-9132 3 - CVE-2025-38494 4 - CVE-2020-14883 5 - CVE-2025-52970 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    22 Sept 2025

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  38. 📝 𝐆𝐎𝐋𝐃 𝐒𝐀𝐋𝐄𝐌: 𝐀 𝐍𝐞𝐰 𝐑𝐚𝐧𝐬𝐨𝐦𝐰𝐚𝐫𝐞 𝐆𝐫𝐨𝐮𝐩 𝐈𝐬 𝐄𝐱𝐩𝐥𝐨𝐢𝐭𝐢𝐧𝐠 𝐒𝐡𝐚𝐫𝐞𝐏𝐨𝐢𝐧𝐭 𝐅𝐥𝐚𝐰𝐬 • GOLD SALEM has been active since March

    @PurpleOps_io

    22 Sept 2025

    328 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    1 Quote

  39. Top 5 Trending CVEs: 1 - CVE-2018-17144 2 - CVE-2025-24071 3 - CVE-2017-10271 4 - CVE-2025-53770 5 - CVE-2024-34102 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    21 Sept 2025

    129 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  40. Hello! Today’s 1day1line is about CVE-2025-53770 (RCE) & CVE-2025-53771 (Auth bypass) in SharePoint — linked to earlier CVE-2025-49704 & 49706. These vulnerabilities affect on-premises Microsoft SharePoint. Check out the post! https://t.co/poMIov7NA5

    @hackyboiz

    20 Sept 2025

    2499 Impressions

    12 Retweets

    49 Likes

    22 Bookmarks

    1 Reply

    0 Quotes

  41. 【アーカイブ】 最新のSharePoint脆弱性の概要と対策を詳しく解説! SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abmNUx #cybernote #ブログ仲間と繋がりたい

    @CyberNote_media

    19 Sept 2025

    7 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  42. 【アーカイブ】 SharePointの脆弱性と対策を詳しく解説します! SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/NCC59MrmLD #cybernote #ブログ仲間と繋がりたい #Web

    @Teeeda_worker

    17 Sept 2025

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  43. 🚨 SharePoint Zero-Day (CVE-2025-53770) is being exploited NOW. Unpatched servers = RCE, stolen data, and ransomware. Chicago businesses: secure your systems before attackers do. Read more. https://t.co/WRkMzD06BY #CyberSecurity #DataSecurity #zeroday #Chicago #MSP

    @AAntony09

    11 Sept 2025

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  44. 【アーカイブ】 最新ゼロデイ脆弱性への対策を詳しく解説! SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abnlK5 #cybernote #ブログ仲間と繋がりたい #Webラ

    @CyberNote_media

    11 Sept 2025

    17 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  45. 【アーカイブ】 SharePointの脆弱性と対策について詳しく解説! SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/NCC59MrmLD #cybernote #ブログ仲間と繋がりたい #Web

    @Teeeda_worker

    9 Sept 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  46. Ransomware vulns with highest exploit likelihood ⬆️ (past 30d): - CVE-2025-53770 (SharePoint..) +25.40% - CVE-2023-20269 (ASA..) +24.24% - CVE-2023-20269 (FTD..) +24.24% - CVE-2024-26169 (Windows Error R..) +9.58% - CVE-2022-27510 (NetScaler ADC..) +6.76%

    @DefusedCyber

    8 Sept 2025

    5121 Impressions

    9 Retweets

    43 Likes

    18 Bookmarks

    2 Replies

    2 Quotes

  47. A critical RCE flaw in Microsoft SharePoint Server 2019 (CVE-2025-53770) puts enterprise systems at risk. Learn the impact and how to defend. https://t.co/3Rd9omYRix #CyberSecurity #SharePoint #Microsoft #CVE202553770 #RemoteCodeExecution #EnterpriseSecurity https://t.co/sFNSNt

    @redsecuretech

    7 Sept 2025

    53 Impressions

    0 Retweets

    1 Like

    1 Bookmark

    0 Replies

    0 Quotes

  48. 📢 New CVE analysis just dropped! CVE-2025-53770 enables full remote takeover of SharePoint servers—see how it works, who's exploiting it, and how to patch it fast. 🔗 Read the full breakdown → https://t.co/lSxXcPYLUa Stay safe, and let us know your thoughts!

    @PurpleOps_io

    7 Sept 2025

    63 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  49. 【アーカイブ】 SharePointの脆弱性対策を徹底解説!詳細を確認し安全を守ろう。 SharePointの最新ゼロデイ脆弱性とは?CVE-2025-53770/53771の概要と企業が取るべき対策を解説 https://t.co/EV97abmNUx #cybernote #ブログ仲間

    @CyberNote_media

    5 Sept 2025

    23 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  50. Trellix researchers look into a recent wave of exploitation targeting ToolShell vulnerabilities in Microsoft SharePoint Server (CVE-2025-49704, CVE-2025-49706, CVE-2025-53770, and CVE-2025-53771). https://t.co/oeIcaLYlcX https://t.co/SSiUr8XHAN

    @virusbtn

    5 Sept 2025

    1402 Impressions

    7 Retweets

    29 Likes

    8 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.