RCE

Microsoft releases emergency fixes for actively exploited SharePoint security flaws

Microsoft has released emergency patches for two remote code execution vulnerabilities in SharePoint. The CVE-2025-53770 and CVE-2025-53771 security flaws are addressed by KB5002768 and KB5002754.

The issue was discovered by security researchers back in May, when it was found that the vulnerability allows for RCE attacks dubbed ToolShell. Microsoft had tried to plug the security holes earlier in the month with the July Security Update, but this only partly addressed the problem – hence the need for the emergency, out-of-band patches.

By Sofia Elizabella Wyciślik-Wilson - July 21, 2025

RCE

Microsoft releases emergency fixes for actively exploited SharePoint security flaws

Recent Headlines

GenAI lacks the creativity to make scientific discoveries [Q&A]

AI use grows in the workplace but organizations struggle to secure the human element

Industrial routers on the front line of attacks

Opera Neon, Opera's experimental agentic AI browser, is now available to all

Over a third of organizations adjust security strategy for AI-driven threats

Stardock releases Fences 6.20 with new Rollup options and desktop fixes

Microsoft has fixed that Windows 11 dark mode bug that has been annoying you

Most Commented Stories

Google shares its favorite Chrome extensions of 2025 as AI takes over the browser

Microsoft will let you remove AI Action from the Windows 11 context menu

Ashampoo announces Burning Studio 27 with smarter ripping and better audiobook tools

Microsoft is preparing to give the Windows 11 Run dialog a much-needed makeover

Google reveals Year in Search 2025

Tuxedo unveils Gemini 17 Gen4 Linux laptop for high performance workloads

Paranoia rules -- how automation can enable better detection and response [Q&A]

Threats improve to slip past firewalls and filters

NEWS

UNITED KINGDOM