Critical SharePoint Vulnerability Rating

Order byBest matchMost fresh

SharePoint, Microsoft and vulnerability

Microsoft Knew of SharePoint Server Exploit but Failed to Effectively Patch It

A security patch released by Microsoft last month failed to fully fix a critical flaw in U.S. tech giant's SharePoint server software that had been identified in May, opening the door to a sweeping global cyber espionage operation.

· 2d

SharePoint vulnerability with 9.8 severity rating under exploit across globe

Information Age · 2d

‘Act now’: Hackers exploit Microsoft SharePoint vulnerability

· 2d

What to know about a vulnerability being exploited on Microsoft SharePoint servers

Microsoft has issued an emergency fix to close off a vulnerability in Microsoft’s widely-used SharePoint software that hackers have exploited to carry out widespread attacks on businesses and at leas...

· 6h

US Nuclear Body Among Those Impacted By SharePoint Breech

· 10h

The Microsoft SharePoint breach was massive. The response has been minimal

· 23h

US Nuclear Weapons Agency Breached in Microsoft SharePoint Hack, Bloomberg News Reports

Bloomberg reported that no sensitive or classified information is known to have been compromised in the attack on the National Nuclear Security Administration, the agency responsible for maintaining ...

· 12h

Chinese Hackers Are Exploiting Flaws in Widely Used Software, Microsoft Says

· 21h

Microsoft servers hacked by Chinese groups, says tech giant

What to know about ToolShell, the SharePoint threat under mass exploitation

The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The researcher said he picked the name because it exploited ToolPane.aspx, a component for assembling the side panel view in the SharePoint user interface.

Microsoft Put Older Versions of SharePoint on Life Support. Hackers Are Taking Advantage

Multiple hacking groups—including state actors from China—have targeted a vulnerability in older, on-premises versions of the file-sharing tool after a flawed attempt to patch it.

2don MSN

Microsoft SharePoint zero-day breach hits 75 servers: Here’s what the company said

A critical zero-day vulnerability, CVE-2025-53770, is actively exploited in Microsoft SharePoint, impacting 75 company servers, including major corporations and US government agencies. This flaw allows unauthenticated remote code execution.

Microsoft SharePoint hack: CERT-In flags ongoing threat, follow these steps to secure your systems

Researchers first uncovered a sweeping cyber espionage operation targeting Microsoft server software affecting at least 100 organisations.

SecurityWeek1d

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the vulnerabilities.

CRN15d

Microsoft Patches ‘Wormable’ Critical Flaw, Discloses ‘Whopping’ Number Of Bug Fixes

The 130 CVEs (Common Vulnerabilities and Exposures) disclosed in Microsoft’s monthly release of security fixes includes a remote code execution flaw that ‘definitely’ should be prioritized for patching,

eWeek16y

What Makes a Critical Vulnerability Critical? - eWeek

Microsoft’s real definition of critical seems to be what they define as Important: “A vulnerability whose exploitation could result in compromise of the confidentiality, integrity, or ...