SharePoint is bleeding. 85+ servers breached

2025. 07. 21.
OSINT 협회
OSINT 정보
SharePoint is bleeding. 85+ servers breached CVE‑2025‑53770 gives attackers full control with webshells and stolen keys. Attackers can bypass authentication entirely by manipulating HTTP headers. specifically, setting the Referer header to - /_layouts/SignOut.aspx - /_layouts/15/ToolPane.asp The vulnerability affects all on-premises SharePoint Server deployments: SharePoint Server 2016 – No patch available SharePoint Server 2019 – No patch available SharePoint Server Subscription Edition – Security update available
SharePoint is bleeding. 85+ servers breached CVE‑2025‑53770 gives attackers full control with webshells and stolen keys. Attackers can bypass authentication entirely by manipulating HTTP headers. specifically, setting the Referer header to - /_layouts/SignOut.aspx - /_layouts/15/ToolPane.asp The vulnerability affects all on-premises SharePoint Server deployments: SharePoint Server 2016 – No patch available SharePoint Server 2019 – No patch available SharePoint Server Subscription Edition – Security update available
게시일: 2025. 07. 21.
출처: OSINT 협회 Facebook
원본 Facebook 게시물 보기 →
이전

Chinese Groups Launder $580M in India Using Fake Apps and Mule Accounts

다음

ToolShell: A SharePoint RCE chain actively exploited