What is it?
Microsoft Sharepoint (Enterprise, 2019 and 2016) servers are being actively attacked (as of 2025-07-19).
Why is it a risk?
Using this vulnerability, an attacker can execute arbitrary code on your server from a remote location.
This is considered a HIGH risk vulnerability.
How can you mitigate the risk?
Update your Sharepoint installation using the directions provided in the Microsoft link below; the links are about half-way down the page.
Resources:
Microsoft – Description of the security update for SharePoint Enterprise Server 2016: September 10, 2024 (KB5002624)
