CVE-2025-49704
Microsoft SharePoint Code Injection Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
YesDecision
Descriptions
Improper control of generation of code ('code injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint Server. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed.
The specific flaw exists within the DataSetSurrogateSelector class. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the SharePoint web server process.
Microsoft SharePoint contains a code injection vulnerability that could allow an authorized attacker to execute code over a network. This vulnerability could be chained with CVE-2025-49706. The update for CVE-2025-53770 includes more robust protections than the update for CVE-2025-49704.
CVSS Scores
SSVC
- Decision:Act
Timeline
- 2025-06-09 CVE Reserved
- 2025-07-08 CVE Published
- 2025-07-22 Exploited in Wild
- 2025-07-23 KEV Due Date
- 2025-07-24 CVE Updated
- 2025-07-24 EPSS Updated
- ---------- First Exploit
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49704 | 2025-07-08 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Microsoft Search vendor "Microsoft" | Microsoft SharePoint Enterprise Server 2016 Search vendor "Microsoft" for product "Microsoft SharePoint Enterprise Server 2016" | >= 16.0.0.0 < 16.0.5508.1000 Search vendor "Microsoft" for product "Microsoft SharePoint Enterprise Server 2016" and version " >= 16.0.0.0 < 16.0.5508.1000" | en |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Microsoft SharePoint Server 2019 Search vendor "Microsoft" for product "Microsoft SharePoint Server 2019" | >= 16.0.0.0 < 16.0.10417.20027 Search vendor "Microsoft" for product "Microsoft SharePoint Server 2019" and version " >= 16.0.0.0 < 16.0.10417.20027" | en |
Affected
|