CVE-2025-21400

High

Published: 11 February 2025

Published

11 February 2025

Modified

14 February 2025

KEV Added

—

Patch

—

CVSS Score 8.0 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS Score 0.0187 83.2th percentile

Risk Priority 17 60% EPSS · 20% KEV · 20% CVSS

Description

Microsoft SharePoint Server Remote Code Execution Vulnerability

Security Summary

CVE-2025-21400 is a Remote Code Execution vulnerability affecting Microsoft SharePoint Server. Published on 2025-02-11, it carries a CVSS v3.1 base score of 8.0 (AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H) and is associated with CWE-285 as well as NVD-CWE-noinfo.

An attacker with low privileges can exploit this vulnerability over the network with low complexity, though it requires user interaction. Successful exploitation enables remote code execution, resulting in high impacts to confidentiality, integrity, and availability without scope change.

Microsoft has published an advisory with mitigation guidance in their update guide at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21400.

Details

CWE(s): CWE-285NVD-CWE-noinfo

Affected Products

microsoft

sharepoint server

2016, 2019 · ≤ 16.0.17928.20396

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21400
Patch, Vendor Advisory · secure@microsoft.com