July 22, 2025
A critical security vulnerability was publicly disclosed in Microsoft SharePoint on July 18, 2025, identified as CVE‑2025‑53770. This vulnerability allows unauthenticated remote code execution on on-premises SharePoint servers, posing a severe risk to confidentiality, integrity, and availability of affected systems. Microsoft has confirmed that this vulnerability is being actively exploited in the wild.
Background:
CVE‑2025‑53770 is a zero-day vulnerability affecting SharePoint Server Subscription Edition, SharePoint 2019, and SharePoint 2016 (with patches for 2016 still in progress). The vulnerability arises from improper handling of certain server-side inputs, allowing attackers to execute arbitrary code without authentication. It has been weaponized as part of a broader exploit chain in targeted attacks.
SharePoint Online (Microsoft 365) is not affected by this vulnerability.
Actions:
Everbridge does not operate any on-premises SharePoint servers. All of our SharePoint usage is via SharePoint Online (SaaS), which is not impacted by CVE‑2025‑53770.
As a result, no Everbridge systems are vulnerable to this exploit.
If you have any questions, please open a support request via the Everbridge Support Center or contact Everbridge Technical Support.
Please visit our Everbridge Trust Center for further details and to find other security-related documents.
Article Feedback
While we can’t respond to you directly, we’d love to know how we can improve the article.
Article is closed for comments.