CVE-2025-53770

Known Exploited Vulnerability Entry External Catalog

Back to Catalog View Vulnerability
Entry Details
Confirmed Exploited

CVE-2025-53770

2026-04-08 00:00 UTC

Timestamps

2026-04-08

2026-04-08

Scope

Affected: Microsoft / SharePoint | Description: Microsoft confirmation of active attacks targeting on-premises SharePoint Server customers by exploiting vulnerabilities partially addressed by the July Security Update. | Exploitation type: APT | Threat actors: unknown | CWEs: CWE-502 | Origin source: cnw | Notes: https://www.microsoft.com/en-us/msrc/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770

References
  • {'id': 'CVE-2025-53770', 'url': 'https://www.cve.org/CVERecord?id=CVE-2025-53770'}
  • {'id': 'EUVD-2025-23309', 'url': 'https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-23309'}
  • {'id': 'source', 'url': 'https://www.microsoft.com/en-us/msrc/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770'}

afea1e9f-7b6c-428a-a23f-a89ddb687147

cce329bf-df49-4c6e-a027-80be2e6483bd

2026-06-05 17:01 UTC

2026-06-05 17:01 UTC

Evidence
1
Type Source Signal Confidence Details GCVE Metadata
csirt_report enisa-cnw-kev successful_exploitation 0.75
View details 
{
  "catalog": "ENISA / EU CSIRTs Network (CNW) KEV JSON",
  "cwes": "CWE-502",
  "dateReported": "2026/04/08",
  "euvd": "EUVD-2025-23309",
  "exploitationType": "APT",
  "notes": "https://www.microsoft.com/en-us/msrc/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770",
  "originSource": "cnw",
  "product": "SharePoint",
  "threatActorsExploiting": "unknown",
  "vendorProject": "Microsoft",
  "vulnerabilityName": "-"
}
 -
Export Options
JSON Object JSON API View Full Catalog