KB5002768: Resolves a Microsoft SharePoint Server remote code execution vulnerability
Description of the security update for SharePoint Server Subscription Edition: July 21, 2025 (KB5002768)
Summary
This security update resolves a Microsoft SharePoint Server remote code execution vulnerability and Microsoft SharePoint Server spoofing vulnerability. To learn more about the vulnerabilities, see the following security advisories:
- Microsoft Common Vulnerabilities and Exposures CVE-2025-53770
- Microsoft Common Vulnerabilities and Exposures CVE-2025-53771
Notes:
This is build 16.0.18526.20508 of the security update package.
To apply this security update, you must have the release version of Microsoft SharePoint Server Subscription Edition installed on the computer.