Microsoft this week announced update 23H1 for the SharePoint Server Subscription Edition (SE) product, plus multiple servicing changes and other plans. Microsoft released update 23H1 for SharePoint ...

Update 7/21/25: Added links to the security updates for Microsoft SharePoint 2019. Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been ...

Microsoft confirmed “active attacks” targeting SharePoint customers and urged clients in a blog post over the weekend to immediately apply security updates. The attacks are exploiting vulnerabilities ...

Microsoft has released two emergency patches to address zero-day vulnerabilities that have been found in SharePoint RCE. Actively exploited in attacks, the two flaws (tracked as CVE-2025-53770 and CVE ...

Microsoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770 and CVE-2025-53771 that have compromised services worldwide in "ToolShell" ...

It said that SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the attacks. “We’ve been coordinating closely with CISA, DOD Cyber Defense Command and key cybersecurity partners ...

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. Companies that use SharePoint Online tend to keep some ...

SharePoint is one of those less-visible portions of Microsoft Office. It’s a tool for managing shared files across users and systems — if you don’t use it for work, you may never have heard of it, but ...

While fixing exploited flaws, Microsoft may have also introduced new bugs The issues affected multiple SharePoint on-prem variants Hackers are already exploiting them in the wild, so users should ...

Microsoft this week announced SharePoint Server Subscription Edition changes, including a switch to biannual "feature update" release model. A so-called "rings" approach also will be used with these ...