CISA Releases Malware Analysis Report Associated with Microsoft SharePoint Vulnerabilities

CISA published a Malware Analysis Report MAR with analysis and associated detection signatures on files related to Microsoft SharePoint vulnerabilities: CVE-2025-49704link is external CWE-94: Code Injectionlink is external, CVE-2025-49706link is external CWE-287: Improper Authenticationlink is...

Exploit for Deserialization of Untrusted Data in Microsoft

SOC342---CVE-2025-53770-SharePoint-ToolShell-Auth-Bypass-and-R...

ToolShell: a story of five vulnerabilities in Microsoft SharePoint

On July 19–20, 2025, various security companies and national CERTs published alerts about active exploitation of on-premise SharePoint servers. According to the reports, observed attacks did not require authentication, allowed attackers to gain full control over the infected servers, and were...

PT-2025-30160

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Server affected versions not specified Description Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code ov...