Microsoft SharePoint存在远程代码执行漏洞(CVE-2025-53770),可绕过先前补丁,允许攻击者在本地服务器上执行任意代码,控制受影响系统并造成严重安全风险。建议升级至最新版本以修复漏洞。 2025-7-26 00:21:58 Author: horizon3.ai(查看原文) 阅读量:25 收藏
Microsoft SharePoint Remote Code Execution (ToolShell) Vulnerability
CVE-2025-53770 is a patch bypass of CVE-2025-49706 and CVE-2025-49704 that enables remote code execution vulnerability affecting Microsoft SharePoint. This deserialization flaw in on-premises SharePoint Server allows unauthorized attackers to execute arbitrary code remotely.
Exploiting this vulnerability can allow an attacker to gain complete control over the affected system. This includes accessing sensitive data, modifying or deleting system resources, and potentially installing malware or creating backdoors.
Mitigations
- Reference the vendor advisory and upgrade to the latest patched version of Microsoft SharePoint.
Rapid Response N-Day Testing
References
🔗 Disrupting active exploitation of on-premises SharePoint vulnerabilities
Read about other CVEs
NodeZero® Platform
Implement a continuous find, fix, and verify loop with NodeZero
The NodeZero® platform empowers your organization to reduce your security risks by autonomously finding exploitable weaknesses in your network, giving you detailed guidance around how to priortize and fix them, and having you immediately verify that your fixes are effective.
Recognized By
如有侵权请联系:admin#unsafe.sh