Microsoft SharePoint Enterprise Server 2016/2019/Subscription Edition path traversal
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.1 | $0-$5k | 0.00 |
Summary
A vulnerability was found in Microsoft SharePoint Enterprise Server 2016/2019/Subscription Edition. It has been rated as critical. This impacts an unknown function. The manipulation leads to path traversal. This vulnerability is documented as CVE-2025-53771. The attack can be initiated remotely. Additionally, an exploit exists. Upgrading the affected component is advised.
Details
A vulnerability was found in Microsoft SharePoint Enterprise Server 2016/2019/Subscription Edition. It has been rated as critical. This issue affects an unknown function. The manipulation with an unknown input leads to a path traversal vulnerability. Using CWE to declare the problem leads to CWE-22. The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. Impacted is confidentiality, integrity, and availability. The summary by CVE is:
Improper limitation of a pathname to a restricted directory ('path traversal') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.
It is possible to read the advisory at msrc.microsoft.com. The identification of this vulnerability is CVE-2025-53771 since 07/09/2025. The exploitation is known to be easy. The attack may be initiated remotely. Technical details are unknown but a public exploit is available. The attack technique deployed by this issue is T1006 according to MITRE ATT&CK.
The exploit is available at bleepingcomputer.com. It is declared as proof-of-concept. The vulnerability scanner Nessus provides a plugin with the ID 242415 (Security Updates for Microsoft SharePoint Server Subscription Edition (July 2025)), which helps to determine the existence of the flaw in a target environment.
Upgrading eliminates this vulnerability.
The vulnerability is also documented in the databases at Tenable (242415), EUVD (EUVD-2025-22040) and CERT Bund (WID-SEC-2025-1598). Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Affected
- Microsoft SharePoint Server 2019
- Microsoft SharePoint
- Microsoft SharePoint Server 2016
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.microsoft.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔒VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.4VulDB Meta Temp Score: 6.1
VulDB Base Score: 6.3
VulDB Temp Score: 5.7
VulDB Vector: 🔒
VulDB Reliability: 🔍
CNA Base Score: 6.5
CNA Vector (microsoft): 🔒
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔒
VulDB Temp Score: 🔒
VulDB Reliability: 🔍
Exploiting
Class: Path traversalCWE: CWE-22
CAPEC: 🔒
ATT&CK: 🔒
Physical: No
Local: No
Remote: Yes
Availability: 🔒
Access: Public
Status: Proof-of-Concept
Download: 🔒
EPSS Score: 🔒
EPSS Percentile: 🔒
Price Prediction: 🔍
Current Price Estimation: 🔒
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 242415
Nessus Name: Security Updates for Microsoft SharePoint Server Subscription Edition (July 2025)
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔒
Timeline
07/09/2025 CVE reserved07/21/2025 Advisory disclosed
07/21/2025 VulDB entry created
08/01/2025 VulDB entry last update
Sources
Vendor: microsoft.comAdvisory: msrc.microsoft.com
Status: Confirmed
CVE: CVE-2025-53771 (🔒)
GCVE (CVE): GCVE-0-2025-53771
GCVE (VulDB): GCVE-100-317051
EUVD: 🔒
CERT Bund: WID-SEC-2025-1598 - Microsoft SharePoint (On-premises): Mehrere Schwachstellen
scip Labs: https://www.scip.ch/en/?labs.20161013
Entry
Created: 07/21/2025 08:14Updated: 08/01/2025 02:56
Changes: 07/21/2025 08:14 (66), 07/21/2025 10:01 (1), 07/21/2025 12:15 (2), 07/21/2025 16:31 (6), 07/22/2025 01:41 (4), 08/01/2025 02:56 (6)
Complete: 🔍
Cache ID: 216::103
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.