Microsoft (MSFT) Issues Critical Security Updates for SharePoint Servers | MSFT Stock News

1 day ago

Microsoft (MSFT, Financial) has announced the release of critical security updates targeting vulnerabilities in on-premises SharePoint servers. These updates, issued on July 19, 2025, address active security threats linked to two main vulnerabilities: CVE-2025-49706, a spoofing vulnerability, and CVE-2025-49704, a remote code execution vulnerability. Importantly, these issues do not impact SharePoint Online in Microsoft 365.

The company urges customers to implement these updates without delay to safeguard their systems. The patches also cover new security vulnerabilities, specifically CVE-2025-53770, related to the previously identified CVE-2025-49704, and CVE-2025-53771 concerning CVE-2025-49706.

Microsoft has identified two Chinese nation-state actors, referred to as Linen Typhoon and Violet Typhoon, along with another China-based group called Storm-2603, as exploiting these vulnerabilities in internet-facing SharePoint servers. The company warns that the adoption of these exploits is rising and anticipates that more threat actors will use them against unpatched systems. Microsoft continues to investigate the situation and plans to provide updates as more information becomes available.

Disclosures

I/We may personally own shares in some of the companies mentioned above. However, those positions are not material to either the company or to my/our portfolios.

Research Tools

All-In-One Screener Stock Ideas Stock List Guru List Guru Real-Time Picks Insider List Insider Trades Economic Indicators Sector & Industry Performance DCF Calculator Discussion Board

Product

Pricing Plans Excel Add-In Google Sheets Add-on Data API Stock Comparison Table Manual of Stocks Instant Alerts Mobile App 中文

Education

Financial Glossary Tutorials FAQ Schedule Free Session Buffett Indicator Shiller P/E Yield Curve Today U.S. Inflation Rate Global Market Valuation Fed Net Liquidity Buffett Assets Allocation

Company

About GuruFocus Career Contact Us Advertise Term of Use Privacy Policy Referral Program Partner Program

Survey

We'd love to learn more about your experiences on GuruFocus.com and how we can improve!

Take Survey

Disclaimers

GuruFocus.com is not operated by a broker or a dealer. Under no circumstances does any information posted on GuruFocus.com represent a recommendation to buy or sell a security. The information on this site, and in its related newsletters, is not intended to be, nor does it constitute investment advice or recommendations. The individuals or entities selected as "gurus" may buy and sell securities before and after any particular article and report and information herein is published, with respect to the securities discussed in any article and report posted herein. Gurus may be added or dropped from the GuruFocus site at any time. In no event shall GuruFocus.com be liable to any member, guest or third party for any damages of any kind arising out of the use of any content or other material published or available on GuruFocus.com, or relating to the use of, or inability to use, GuruFocus.com or any content, including, without limitation, any investment losses, lost profits, lost opportunity, special, incidental, indirect, consequential or punitive damages. Past performance is a poor indicator of future performance. The information on this site, and in its related newsletters, is not intended to be, nor does it constitute investment advice or recommendations. The information on this site is in no way guaranteed for completeness, accuracy or in any other way. The gurus listed in this website are not affiliated with GuruFocus.com, LLC. Stock quotes are provided by QuoteMedia, Inc. (CSI). Company fundamental data is provided by Morningstar. Analyst estimates data is sourced from both Refinitiv and Morningstar, with priority given to Refinitiv data. Data is updated daily.