Microsoft Released Emergency Security Update to Patch Critical SharePoint 0-Day Vulnerability

Threat Level

67% Cybersecurity News 11 hours ago Part of cluster #1272

Microsoft has issued an urgent security advisory addressing critical zero-day vulnerabilities in on-premises SharePoint Server that attackers are actively exploiting. The vulnerabilities, assigned as CVE-2025-53770 and CVE-2025-53771, pose immediate risks to organizations running SharePoint infrastructure and require immediate remediation. Key Takeaways1. Active zero-day attacks targeting on-premises SharePoint servers via CVE-2025-53770 and CVE-2025-53771.2. Apply security updates […]...

Continue Reading on Original Site

Recommended Articles

Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers

SecurityWeek 10 hours ago

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771....

Iranian APT Targets Android Users With New Variants of DCHSpy Spyware

SecurityWeek 5 hours ago

Iranian APT MuddyWater has been using new versions of the DCHSpy Android surveillance tool since the beginning of the conflict with Israel....

Exploited CrushFTP Zero-Day Provides Admin Access to Servers

SecurityWeek 11 hours ago

Hackers are exploiting a zero-day vulnerability in CrushFTP to gain administrative privileges on vulnerable servers via HTTPS....

Attackers Exploit Zero-Day Flaws in On-Premises SharePoint

Data Breach Today UK 6 hours ago

Microsoft Issuing Emergency Patches to Combat Authentication-Bypassing Attacks Hackers have been exploiting two zero-day vulnerabilities in on-premises installations of Microsoft SharePoint to gain re...

⚡ Weekly Recap: SharePoint 0-Day, Chrome Exploit, macOS Spyware, NVIDIA Toolkit RCE and More

The Hacker News 7 hours ago

Even in well-secured environments, attackers are getting in—not with flashy exploits, but by quietly taking advantage of weak settings, outdated encryption, and trusted tools left unprotected. These a...

Threat Intelligence

Vulnerabilities 1

Zero-Day

Business Intelligence

Companies 1

Microsoft

Platforms 1

SharePoint

Technical Indicators

CVEs 2

CVE-2025-53770 CVE-2025-53771

Information

Article ID: #3926
Published: 11 hours ago
Source: Cybersecurity News

Recommended Articles

Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers

Iranian APT Targets Android Users With New Variants of DCHSpy Spyware

Exploited CrushFTP Zero-Day Provides Admin Access to Servers

Attackers Exploit Zero-Day Flaws in On-Premises SharePoint

⚡ Weekly Recap: SharePoint 0-Day, Chrome Exploit, macOS Spyware, NVIDIA Toolkit RCE and More

Save to Folder

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies