CVE-2025-53771 - Geek Feed

Microsoft releases emergency patches for SharePoint RCE flaws exploited in attacks

July 22, 2025July 22, 2025 geekfeed0Tagged 0day, CVE-2025-53770, CVE-2025-53771, microsoft, Microsoft SharePoint, Security Update, ToolShell, Zero-Day, Zero-day Attack

Microsoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770 and CVE-2025-53771 that have compromised services worldwide in “ToolShell” attacks. In May, during the Berlin Pwn2Own hacking contest, researchers exploited a zero-day vulnerability chain called “ToolShell,” which enabled them to achieve remote code execution in Microsoft SharePoint. These flaws were fixed as part […]

3 mins read

Microsoft SharePoint zero-day exploited in RCE attacks, no patch available

July 22, 2025July 22, 2025 geekfeed0Tagged 0day, Actively Exploited, CVE-2025-53770, CVE-2025-53771, microsoft, Microsoft SharePoint, ToolShell, Web Shell, Zero-Day

Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively exploited since at least July 18th, with no patch available and at least 85 servers already compromised worldwide. In May, Viettel Cyber Security researchers chained two Microsoft SharePoint flaws, CVE-2025-49706 and CVE-2025-49704, in a “ToolShell” attack demonstrated at Pwn2Own Berlin to achieve remote code execution. While […]

8 mins read