Successful exploitation of CVE-2025-53770 could expose MachineKey configuration details from a vulnerable SharePoint Server, ultimately enabling unauthenticated remote code execution. Background Tenable’s Research Special Operations (RSO) team has compiled this blog to answer Frequently Asked Questions (FAQ) regarding a zero-day SharePoint Server vulnerability that has been exploited in the wild. FAQ When was the SharePoint exploitation first disclosed? On July 19, reports emerged that Microsoft...
Microsoft SharePoint Zero-day
FortiGuard Threat Signal
3 hours ago
Threat Signal Report Microsoft SharePoint Zero-day Description What is the Vulnerability? A critical zero-day vulnerability in Microsoft SharePoint, identified as CVE-2025-53770, has been actively exp...