Microsoft has issued out-of-band security updates for SharePoint Server 2019 and SharePoint Server Subscription Edition due to active attacks on vulnerable versions. The patches address CVE-2025-53770, a remote code execution vulnerability, and CVE-2025-53771, a path traversal vulnerability. Administrators are encouraged to apply these updates immediately. SharePoint Server 2016 is also impacted but lacks available fixes at present. Microsoft recommends setting the Antimalware Scan Interface (AMSI) to Full Mode and deploying Defender Antivirus. If AMSI cannot be enabled, servers should be disconnected from the internet until a fix is applied.
Microsoft is releasing out-of-band security updates for SharePoint Server 2019 and SharePoint Server Subscription Edition, following a warning that vulnerable versions were now under attack.
The fixes are related to CVE-2025-53770, a remote code execution vulnerability, and CVE-2025-53771, a path traversal vulnerability.
Microsoft has advised administrators of on-premises SharePoint Server 2019 and SharePoint Server Subscription Edition to apply the fixes immediately.
If AMSI can't be enabled, Microsoft's advice is blunt: "We recommend you consider disconnecting your server from the internet until a security update is available."
Collection
[
|
...
]