Attackers are exploiting a zero-day variant (CVE-2025-53770) of a SharePoint remote code execution vulnerability (CVE-2025-49706) that Microsoft patched earlier this month, the company has confirmed on Saturday. CVE-2025-53770 is being leveraged to place a backdoor on vulnerable on-premises SharePoint Servers and to grab the systems’ security keys, allowing the attackers full takeover of the machines. There is currently no patch available to plug this security hole, but Microsoft says that customers running on-premises SharePoint Servers … More
The post Microsoft SharePoint servers under attack via zero-day vulnerability with no patch (CVE-2025-53770) appeared first on Help Net Security.
