What is the Microsoft Sharepoint (Subscription Edition, 2019 and 2016) on-premises servers Attack, what is the risk and how can you mitigate that risk?

What is it?

Microsoft Sharepoint (Subscription Edition, 2019 and 2016) on-premises servers are being actively attacked (as of 2025-07-19).

Why is it a risk?

Using this vulnerability, an attacker can execute arbitrary code on your server from a remote location.

This is considered a CRITICAL vulnerability.

How can you mitigate the risk?

Follow the directions provided in the Microsoft link below.

The Canadian Centre for Cyber Security link below provides additional recommendation for securing your Sharepoint Server.

Resources:

Microsoft – Customer guidance for SharePoint vulnerability CVE-2025-53770

https://msrc.microsoft.com/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770/

Canadian Centre for Cyber Security -Alert – Vulnerability impacting Microsoft SharePoint Server (CVE-2025-53770) – Update 1

https://www.cyber.gc.ca/en/alerts-advisories/al25-009-vulnerability-impacting-microsoft-sharepoint-server-cve-2025-53770